SPECIFICATION 



TO ALL WHOM IT MAY CONCERN: 

BE IT KNOWN THAT I, TOMOAKI ENOKIDA , a citizen 
of Japan residing at Tokyo, Japan have invented certain 
new and useful improvements in 

DIGITAL CERTIFICATE MANAGEMENT SYSTEM, DIGITAL 
CERTIFICATE MANAGEMENT APPARATUS, DIGITAL CERTIFICATE 
MANAGEMENT METHOD, PROGRAM AND COMPUTER READABLE 
INFORMATION RECORDING MEDIUM 



of which the following is a specification:- 
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BACKGROUND OF THE INVENTION 

1. Field of the Invention 

The present invention relates to a digital 
certificate management system managing a digital 
5 certificate in a digital certificate management 

apparatus used for authentication processing between one 
or a plurality of clients and one or a plurality of 
servers which configure a client and server, system, the 
digital certificate management apparatus, a digital 

10 certificate management method for managing the digital 
certificate, an updating procedure determining method 
for determining an updating procedure for updating the 
digital certificate proving validity of the digital 
certificate concerning the digital certificate 

15 management processing, a program causing a computer to 

function as the digital certificate management apparatus, 
and a computer readable information recording medium 
storing the program. 

20 2. Description of the Related Art 

There is a client and server system in which a 
plurality of computers such as PCs are connected 
together via a communication network in a manner such 
that each computer is communicatable with any other 

25 computers, and at least one thereof acts as a server and 
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at least another one thereof acts as a client. 

In such a client and server system, a request 
is transmitted from the client to the server, which then 
executes processing according to the request, and then 
5 responds to the client. Such a client and server system 
has been applied to a so-called electronic commerce 
system in which the client transmits an order request 
for goods, and the server accepts the order request, for 
example. Another type of system has also been proposed 

10 in which various electronic devices are made to have 

functions as the clients or the servers, are connected 
via a communication network and thereby, remote 
management for the electronic devices is achieved. 

In such a case, it is important to confirm 

15 whether a communication counterpart is an appropriate 
one, and also, to confirm whether information 
transmitted has not been tampered. Furthermore, 
especially in a case of utilizing the Internet or so, in 
many cases, information passes through many computers 

20 which have no relevance until the information reaches a 
communication counterpart. Thereby, when secret 
information is transmitted, it is necessary to take a 
measure such as to avoid the information from leaking. 
A communication protocol which solves such a problem, 

25 such as a protocol called SSL (secure socket layer) or 
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so has been developed, and has spread widely. When such 
a protocol is applied for communication, a public key 
cryptosystem and a private key cryptosystem are combined 
for performing authentication of a communication 
5 counterpart, and also, tamper or wiretap can be avoided 
effectively since the information is encoded. 

A communication procedure performed when the 
authentication processing is performed with the use of a 
pubic key cryptosystem, and a digital certificate used 

10 there, will now be described. There, it is assumed that 
a client authenticates a server in this case. In this 
case, in order to perform authentication processing, a 
server private key and a server public key certificate 
(server certificate) are stored in the server, and also, 

15 a root key certificate is stored in the client. The 
server private key is a private key issued by a 
certificate authority (CA) for the server. The server 
public key certificate is created in a form of a digital 
certificate including a public key corresponding to the 

20 private key to which the CA attached a digital signature. 
The root key certificate also has a form of a digital 
certificate including a root key which is a proof public 
key (referred to as a *proof key', hereinafter) 
corresponding to a root private key which is a proof 

25 private key used by the CA in the digital signature. 
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FIGS. 53A and 53B illustrate such relationship. 
As shown in FIG. 53A, the server public key includes a 
key body used for decoding a document encoded with the 
use of the server private key, and bibliographic 
5 information including information of an agency (CA) 

which issued the public key, a part (server) for which 
public key was issued, validity due date and so forth. 
In order to show that the key body and the bibliographic 
information have not been tampered, the CA encodes with 

10 the use of the root private key a hash value obtained 

from hash processing performed on the server public key, 
and attaches it as a digital signature to the server 
public key. Further, at this time, identification 
information used for identifying the root private key 

15 used for the digital signature is added to the 

bibliographic information as signature key information. 
The server public key certificate is obtained as a 
public key certificate having the digital signature 
attached thereto. 

20 When using the server public key certificate 

in the authentication processing, the digital signature 
included therein is decoded with the use of the key body 
of the root key which is the public key corresponding to 
the root private key. When the decoding has been 

25 completed normally, it is positively determined that the 
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digital signature was attached by the CA. Further, when 
a hash value obtained from performing hash processing on 
the server public key part and a hash value obtained 
from the decoding agree with one another, it is 
5 determined that the key itself has not been subject to 
any damage or tamper. Furthermore, when the received 
data has been normally decoded with the use of the 
server public key, it is determined that the data is one 
transmitted from the server which possesses the server 

10 private key. After that, with reference to the 

bibliographic information, authentication is performed 
based on the given reliability of the CA, whether or not 
the server is registered, or so. 

In order to perform the authentication, it is 

15 necessary to previously stores the root key, and this 
root key is stored in a form of a root key certificate 
having a digital signature attached thereto by the CA, 
as shown in FIG. 53B. This root key certificate is in a 
self signing type such that the digital signature can be 

20 decode with the use of a public key which is included in 
the same certificate. When the root key is used, the 
digital signature included in the root key certificate 
is decoded with the use of the key body, and is compared 
with a hash value obtained from performing hash 

25 processing on the root key. When they agree with one 
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another, it can be proved that the root key has not been 
subject to any damage or such. 

When the client requests the server for 
communication in the client and server system, these 
5 respective apparatuses perform the follows processing: 

First, the server generates a random number in 
response to the communication request from the client, 
and also, encodes it with the use of the server private 
key. The thus-obtained encoded random number is 

10 transmitted to the client together with the server 

public key certificate. Then, when receiving it, the 
client proves validity of the received server public key 
certificate with the use of the root key certificate. 
This proving processing includes not only processing for 

15 proving that it has been subject to neither damage nor 
tamper but also processing for proving that the server 
is a proper communication counterpart with the use of 
the bibliographic information. After the proving is 
normally completed, the received random number is 

20 decoded with the use of the server public key included 

in the received server public key certificate. When the 
decoding is completed in success, it can be proved that 
the random number is one received from the server for 
which the server public key certificate was issued, 

25 positively. Thus, through the above-described 
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processing, the server is authenticated as a proper 
communication counterpart by the client. 

Furthermore, when a key for common key used 
encoding is exchanged after it is encoded with the use 
5 of the private key or the public key, the common key can 
be exchanged safely, and it is achieved to establish a 
safe communication path by encoding the communication 
contents according to the common key used encoding. 

In the public key cryptosystem, it is possible 

iO to derive the private key from the public key although 
it requires a considerably long time depending on the 
key length, in general. Then, when the private key is 
thus known once, a third person can pretend to be the 
right holder of the private key (spoofing) . If so, 

15 reliability in the authentication or safety in 

communication cannot be secured. Then, in order to 
solve this problem, there are some users who apply a 
security policy by which validity due date is given to a 
key mentioned above, and a set of keys are replaced 

20 periodically. As a result, when the above-mentioned 

remote management system utilizing the above-mentioned 
authentication processing is provided, it is needed to 
guarantee, for a customer, that the system has an 
ability of updating keys. The same discussions should 

25 also be made for the root keys and root private keys. A 
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trigger of updating a key is not only expiration of a 
predetermined validity due date, but also a fact that it 
is known that the private key has leaked to a third 
person . 

5 Japanese Laid-open Patent Application No. 11- 

122238 discloses an art relating to such a manner of 
updating the key, for example. 

SUMMARY OF THE INVENTION 
10 However, in the above-mentioned disclosure, 

although a disclosure is included for updating a key 

issued for each apparatus, no disclosure is included for 

updating the root key. 

In a case of public key cryptosystem, when a 
15 pair of keys issued for each apparatus are updated, this 

i apparatus stores a new public key certificate 

i 

corresponding to the thus-updated new private key. Then, 
after the new certificate is transferred to a 
communication counterpart, the above-described 
20 authentication processing can be performed without 
problem . 

However, when the root key is updated, since 
the new root key is not useful for decoding the digital 
signature attached in the old digital certificate, it is 
25 necessary to again create a new public key certificate 
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for each apparatus with the use of a new root private 
key corresponding to the new root key, and then, to 
distribute the thus-created certificate. Otherwise, the 
authentication processing cannot be performed properly. 
5 In this regard, it is noted that the private key of each 
apparatus should not be necessarily updated. 

Since no way was known to update the root key 
without causing any such a trouble for the 

authentication processing, it was not possible to safely 

10 distribute the root key to the apparatus for which 

updating thereof is needed via the communication network. 
Thus, it was necessary to safely distribute the root key 
certificate or the public key certificate via another 
safe communication path to each apparatus. In other 

15 words, it was necessary to provide a special 

communication path for distributing the root key 
certificate . 

As such a communication path, for example, a 
certified mail system may be applied. Specifically, a 

20 memory card, a flexible disk or such, in which data of a 
certificate is stored, is distributed to a manager 
(person) of a relevant apparatus via the certified mail 
system, and then, the manager updates the key of the 
apparatus of his or her own. However, this method can 

25 be applied only in a case where the manager has a 
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sufficient skill or knowledge for the relevant apparatus 
such as the server or the client. Furthermore, in this 
method, the CA has no way to prove that the manager of 
the apparatus performs the updating processing without 
5 error, after distributing the recording medium such as a 
memory card or a flexible disk. If the manager fails to 
properly update the key or fails to perform the updating 
processing, the authentication processing cannot work 
properly . 

10 On the other hand, also the manager has no way 

to prove that the data of certificate thus distributed 
is correct one, other than determining it from a name of 
a sender printed on the recording medium or on the 
envelope thereof. Thus, there is a possibility that a 

15 person who pretends to the CA distributed false data 

which may then be used to update the key for the system. 

In another method, the CA or a provider of the 
client and server system may dispatch service staffs to 
respective locations in which relevant apparatuses are 

20 installed for directly perform key updating works. 

However, if such a method is applied for a case where 
the relevant system covers a very wide area, many 
service centers are needed, and thus, the costs increase 
accordingly. It is also necessary to well manage and 

25 educate these service staffs. For example, management 
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with the use of identification numbers of the respective 
managers who perform the updating works , with a 
necessary measure to positively avoid any possible 
wrongdoings. For example, if a simple method is applied 
5 such as to manually input authentication information or 
such, it is necessary to change authentication 
information in the respective apparatus for positively 
deleting updating right of a retired service staff if 
any, for example. However, it is difficult to perform 

10 such change in the authentication for many apparatuses 
installed at the customers. 

Consequently, if a method is employed for 
securing a safe distribution path for the certificate 
without the use of the communication network, there is 

15 no way other than relying on a person, where a deceit 
may occur accordingly. Although it is possible to 
perform management to reduce this possibility to the 
best effort, considerable costs may be required. 
Therefore, there was not a practical way to establish a 

20 'path' for distributing the certificate for which there 
is no worry about such a deceit 

As a communication path for such* a 
key/certificate updating work, a special communication 
path may be prepared with the use of a digital 

25 certificate especially for this updating work and a root 
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key certificate especially for the updating work, other 
than those used for regular communications. However, in 
a system in which a client authenticates a server, the 
following problem may occur at this time: 
5 That is, in this case, the server transmits a 

digital certificate in response to a connection request 
made by the client. However, in a case where the server 
receives connection requests in any timing from 
unspecified clients, it is difficult to properly 

10 determine for each client which of a digital certificate 
for the regular communications and the same for the 
updating work should be distributed. In case of making 
the determination, a session identifier such as a source 
end point identifier, a destination end point identifier, 

15 a URL (uniform resource locator) , or such, may be 
utilized. However, in order to achieve the 
determination, it is necessary to provide a function in 
each client to switch the session identifier (for 
example, URL) depending on whether the relevant 

20 communications are regular communications or 

communications for the updating work, to provided in the 
server to manage a correspondence relationship between 
the source end point identifier and a digital 
certificate to be distributed, or such. However, such a 

25 measure may require extra costs accordingly. 
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Accordingly , to provide a function in the server to 
select a digital certificate to be distributed to the 
client based on information exchanged before actual 
communications such as a session identifier should be 
5 omitted if possible. Further, if two communication 
paths are provided with the use of a same protocol, a 
problem may occur in which, when the authentication 
results in failure, it may be difficult to determine 
whether a problem occurs from the digital certificate or 

10 from the session identifier. 

Thus, the method of providing a special 
communication path for the root key updating may result 
in increase in the costs or increase in the management 
load, and thus, there is a demand to provide a scheme by 

15 which, without providing a special communication path, 
the root key can be safely updated. 

The present invention has been devised for the 
purpose of solving this problem, and for providing a 
scheme in which a proof key used for proving validity of 

20 a digital certificate in authentication processing in a 
client and server system can be safely updated without 
providing a special communication path therefor. 

In order to achieve the above-mentioned object, 
according to the present invention, a digital 

25 certificate management system includes: a client and 
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server system in which a digital certificate is used for 
authentication so as to establish communication between 
a server and a client, and data transmission is 
performed therebetween with the use of a path 
5 established through the authentication; and a digital 

certificate management apparatus communicatable with the 
client and the server, wherein: the digital certificate 
management apparatus includes a proof key updating unit 
which updates a proof key used for proving validity of 

10 the digital certificate used for authentication by the 
server; the proof key updating unit includes: a unit 
configured to acquire a new proof key for updating; a 
unit configured to acquire a new digital certificate 
used for the authentication for which validity can be 

15 proved with the use of the new proof key; a first 

transmitting unit transmitting the new proof key to the 
client; and a second transmitting unit transmitting a 
new server certificate which is the new digital 
certificate for the server to the server, and wherein: 

20 the second transmitting unit performs the operation of 
transmitting the new server certificate to the server 
after receiving from the client information indicating 
that the client has received the new proof key. 

In this digital certificate management system, 

25 it is preferable that: the proof key updating unit in 
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the digital certificate management apparatus includes a 
unit configured to acquire a proof key certificate, 
which is the digital certificate, including the new 
proof key, for which validity can be proved with the use 
5 of an old proof key, and wherein: the first transmitting 
unit is configured to transmit the new proof key in a 
form of the proof key certificate to the client; and the 
client includes a unit configured to be responsive to 
the proof key included in the proof key certificate 

10 coming from the digital certificate management apparatus, 
for proving validity of the received proof key 
certificate with the use of the old proof key and 
storing the proof key included in the proof key 
certificate when determining that the proof key is an 

15 appropriate one. 

The proof key updating unit in the digital 
certificate management system may preferably include: a 
unit configured to acquire a first proof key certificate, 
including the new proof key, which is the digital 

20 certificate for which validity can be proved with the 
use of an old proof key; and a unit configured to 
acquire a second proof key certificate, including the 
new proof key, which is the digital certificate for 
which validity can be proved with the use of the new 

25 proof key, and wherein: the first transmitting unit is 
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configured to transmit the new proof keys in respective 
forms of the first proof key certificate and the second 
proof key certificate to the client; and the client 
includes: a unit configured to be responsive to the 
5 first proof key certificate coming from the digital 

certificate management apparatus, for proving validity 
of the received certificate with the use of the old 
proof key and storing the certificate when determining 
that it is an appropriate one; and a unit configured to 

10 be responsive to the second proof key certificate coming 
from the digital certificate management apparatus, for 
proving validity of the received certificate with the 
use of the new proof key included in the first proof key 
certificate, and storing the second proof key 

15 certificate when determining that it is an appropriate 

one, and then deleting the old proof key certificate and 
the first proof key certificate, and wherein: the first 
transmitting unit in the digital certificate management 
apparatus is configured to perform the operation of 

20 transmitting the second proof key certificate to the 
client at least after receiving information from the 
server indicating that the server has received the new 
server certificate . 

According to another aspect of the present 

25 invention, a digital certificate management system 
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includes: a client and server system in which a digital 
certificate is used for mutual authentication so as to 
establish communication between a server and a client, 
and data transmission is performed therebetween with the 
5 use of a path established through the authentication; 
and a digital certificate management apparatus 
communi eatable with the client and the server, and 
wherein: the digital certificate management apparatus 
includes a proof key updating unit which updates a proof 

10 key used for proving validity of the digital certificate 
used for the mutual authentication by the client and the 
server; the proof key updating unit includes: a unit 
configured to acquire a new proof key for updating; a 
unit configured to acquire a new digital certificate 

15 used for the mutual authentication for which validity 

can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for the client, and 
the new proof key, to the client; and a second 

20 transmitting unit transmitting a new server certificate 
which is the .new digital certificate for the server, and 
the new proof key, to the server, and wherein: the 
second transmitting unit performs the operation of 
transmitting the new server certificate to the server 

25 after receiving from the client information indicating 
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that the client has received the new proof key; and the 
first transmitting unit performs the operation of 
transmitting the new client certificate to the client 
after receiving information from the server indicating 
5 that the server has received the new proof key. 

In this digital certificate management system, 
the first transmitting unit may preferably be configured 
to transmit the new proof key to the client at the same 
time of or in prior to transmission of the new client 

10 certificate; and the second transmitting unit may 

preferably be configured to transmit the new proof key 
to the server at the same time of or in prior to 
transmission of the new server certificate. 

According to another aspect of the present 

15 invention, a digital certificate management system 

includes: a client and server system in which a digital 
certificate is used for mutual authentication so as to 
establish communication between a server and a client, 
and data transmission is performed therebetween with the 

20 use of a path established through the authentication; 
and a digital certificate management apparatus 
communicatable with the client and the server, and 
wherein: the digital certificate management apparatus 
includes a proof key updating unit which updates a proof 

25 key used for proving validity of the digital certificate 
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used for the mutual authentication by the client and the 
server; the proof key updating unit includes: a unit 
configured to acquire a new proof key for updating;, a 
unit configured to acquire a new digital certificate 
5 used for the mutual authentication for which validity 

can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for the client, and 
the new proof key, to the client; and a second 

10 transmitting unit transmitting a new server certificate 
which is the new digital certificate for the server, and 
the new proof key, to the server, and wherein: the first 
transmitting unit performs the operation of transmitting 
the new client certificate and the new proof key to the 

15 client at the same time; and the second transmitting 
unit performs the operation of transmitting the new 
server certificate and the new proof key to the server 
at the same time after receiving information from the 
client indicating that the client has received the new 

20 proof key. 

In this digital certificate management system, 
the server may preferably have an intermediary function 
for communication between the digital certificate 
management apparatus and the client; the digital 
25 certificate management apparatus and the client may 
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preferably perform data transmission mutually via the 
server; and the server may preferably transmit the new 
proof key and/or the new client certificate to the 
client, transmitted from the first transmitting unit of 
5 the digital certificate management apparatus for the 
client, via the communication established through 
authentication performed with the client with the use of 
an old digital certificate. 

Alternatively, in the above-mentioned digital 

10 certificate management system, the client may preferably 
have an intermediary function for communication between 
the digital certificate management apparatus and the 
server; the digital certificate management apparatus and 
the server may preferably perform data transmission 

15 mutually together via the client; and the client may 
preferably transmit the new proof key and/or the new 
server certificate to the server, transmitted from the 
second transmitting unit of the digital certificate 
management apparatus for the server, via the 

20 communication established through authentication 

performed with the server with the use of an old digital 
certificate . 

Furthermore, the authentication performed 
between the client and the server may preferably be 

25 authentication according to an SSL or TLS protocol; and 
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the server certificate may preferably be a public key 
certificate for the server. 

In the digital certificate management 
apparatus, it is preferable to provide, in the proof key 
5 updating unit, a unit configured to acquire the digital 
certificate which is a proof key certificate including 
the new proof key, and also, to configure the first 
transmitting unit to have a function of transmitting the 
new proof key to the client in a form of the proof key 

10 certificate, and requesting the client to store the 
proof key included therein. 

Further, the proof key updating unit may 
preferably include: a unit configured to acquire a first 
proof key certificate, including the new proof key, 

15 which is the digital certificate for which validity can 
be proved with the use of an old proof key; and a unit 
configured to acquire a second proof key certificate, 
including the new proof key, which is the digital 
certificate for which validity can be proved with the 

20 use of the new proof key, and wherein: the first 

transmitting unit is configured to transmit the new 
proof keys in respective forms of the first proof key 
certificate and the second proof key certificate to the 
client; and the client includes a unit which, when 

25 storing the second proof key certificate, deletes the 
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old proof key certificate and the first proof key 
certificate, and wherein: the first transmitting unit in 
the digital certificate management apparatus is 
configured to perform the operation of transmitting the 
5 second proof key certificate to the client at least 

after receiving information from the server indicating 
that the server has received the new server certificate. 

According to another aspect of the present 
invention, a digital certificate management apparatus 

10 communicatable with a client and a server which 

configure a client and server system, includes: a proof 
key updating unit which updates a proof key used for 
proving validity of a digital certificate used for 
mutual authentication by which communication is 

15 established between the client and the server, and 

wherein: the proof key updating unit includes: a unit 
configured to acquire a new proof key for updating; a 
unit configured to acquire a new digital certificate 
used for the mutual authentication for which validity 

20 can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for the client, and 
the new proof key, to the client; and a second 
transmitting unit transmitting a new server certificate 

25 which is the new digital certificate for the server, and 
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the new proof key, to the server, and wherein: the 
second transmitting unit performs the operation of 
transmitting the new server certificate to the server 
after receiving from the client information indicating 
5 that the client has received the new proof key; and the 
first transmitting unit performs the operation of 
transmitting the new client certificate to the client 
after receiving information from the server indicating 
that the server has received the new proof key. 

10 According to another aspect the present 

invention, a digital certificate management apparatus 
communicatable with a client and a server which 
configure a client and server system, includes: a proof 
key updating unit which updates a proof key used for 

15 proving validity of a digital certificate used for 
mutual authentication by which communication is 
established between the client and the server, and 
wherein: the proof key updating unit includes: a unit 
configured to acquire a new proof key for updating; a 

20 unit configured to acquire a new digital certificate 
used for the mutual authentication for which validity 
can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for the client, and 

25 the new proof key, to the client; and a second 
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transmitting^ unit transmitting a new server certificate 
which is the new digital certificate for the server, and 
the new proof key, to the server, and wherein: the first 
transmitting unit performs the operations of 
5 transmitting the new client certificate and the new 

proof key to the client at the same time; and the second 
transmitting unit performs the operations of 
transmitting the new server certificate and the new 
proof key to the server at the same time after receiving 

10 information from the client indicating that the client 
has received the new proof key. 

This digital certificate management apparatus 
may perform data transmission with the client via the 
server; and the server may preferably transmit the new 

15 proof key and/or the new client certificate to the 

client, transmitted from the first transmitting unit of 
the digital certificate management apparatus for the 
client, via the communication established through 
authentication performed with the client with the use of 

20 an old digital certificate. 

Alternatively, the above-mentioned digital 
certificate management apparatus may perform data 
transmission with the server via the client; and the 
client may preferably transmit the new proof key and/or 

25 the new server certificate to the server, transmitted 
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from the second transmitting unit of the digital 
certificate management apparatus for the server, via the 
communication established through authentication 
performed with the server with the use of an old digital 
5 certificate. 

Furthermore, in the digital certificate 
management apparatus, the authentication performed 
between the client and the server may preferably be 
authentication according to an SSL or TLS protocol; and 

10 the server certificate may preferably be a public key 
certificate for the server. 

According to another aspect of the present 
invention, a digital certificate management system 
includes: a client and server system in which one or a 

15 plurality of clients and one or a plurality of servers 
are provided, authentication is performed between each 
client and each sever with the use of a digital 
certificate, and communication is performed therebetween 
with a path established through the authentication; and 

20 a digital certificate management apparatus 

communicatable with each client and each server, and 
wherein: the digital certificate management apparatus 
includes: a proof key updating unit updating a proof key 
used for proving validity of the digital certificate 

25 used for authentication by each server; and an updating 



-27- 



order control unit controlling a procedure of updating 
the proof key performed by the proof key updating unit 
based on information concerning the respective nodes 
included in the client and server system as to a 
5 communication counterpart of each node and as to whether 
each of the node and the counterpart acts as a client or 
a server, and wherein: the proof key updating unit 
includes: a unit configured to acquire a new proof key 
for updating; a unit configured to acquire a new digital 

10 certificate used for the authentication for which 

validity can be proved with the use of the new proof 
key; a first transmitting unit transmitting the new 
proof key to each client; and a second transmitting unit 
transmitting a new server certificate which is the new 

15 digital certificate for each server to the relevant 
server, and wherein: the updating order control unit 
controls the updating procedure so that the second 
transmitting unit performs the operation of transmitting 
the new server certificate to the respective server 

20 after receiving from all the clients, which act as 

communication counterparts of the server, information 
indicating that the clients have received the new proof 
keys . 

In this digital certificate management system, 
25 the proof key updating unit in the digital certificate 



-28- 



management apparatus may preferably include a unit 
configured to acquire a proof key certificate, including 
the new proof key, which is the digital certificate for 
which validity can be proved with the use of an old 
5 proof key, and wherein: the first transmitting unit may 
preferably be configured to transmit the new proof key 
in a form of the proof key certificate to the client; 
and each client may preferably include a unit configured 
to be responsive to the proof key certificate coming 

10 from the digital certificate management apparatus, for 
proving validity of the received proof key certificate 
with the use of the old proof key and storing the proof 
key included in the proof key certificate when 
determining that the proof key is an appropriate one. 

15 Furthermore, in the digital certificate 

management system, the proof key updating unit may 
include: a unit configured to acquire a first proof key 
certificate, including the new proof key, which is the 
digital certificate for which validity can be proved 

20 with the use of an old proof key; and a unit configured 
to acquire a second proof key certificate, including the 
new proof key, which is the digital certificate for 
which validity can be proved with the use of the new 
proof key, and wherein: the first transmitting unit is 

25 configured to transmit the new proof keys in respective 



-29- 



forms of the first proof key certificate and the second 
proof key certificate to each client; and each client 
includes: a unit configured to be responsive to the 
first proof key certificate coming from the digital 
5 certificate management apparatus, for proving validity 
of the received certificate with the use of the old 
proof key and storing the certificate when determining 
that it is an appropriate one; and a unit configured to 
be responsive to the second proof key certificate coming 

10 from the digital certificate management apparatus, for 
proving validity of the received certificate with the 
use of the new proof key included in the second proof 
key certificate, and storing the second proof key 
certificate when determining that it is an appropriate 

15 one, and then deleting the old proof key certificate and 
the first proof key certificate, and wherein: the 
updating order control unit in the digital certificate 
management apparatus is configured to perform control 
such that the operation of transmitting the second proof 

20 key certificate to each client from the first 

transmitting unit is performed at least after receiving 
information from all the servers which act as 
communication counterparts of the client indicating that 
the servers have received the new server certificates. 

25 According to another aspect of the present 
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invention, a digital certificate management system 
includes: a client and server system in which one or a 
plurality of clients and one or a plurality of servers 
are provided, mutual authentication is performed between 
5 each client and each sever with the use of a digital 
certificate, and data transmission is performed 
therebetween with a path established through the 
authentication; and a digital certificate management 
apparatus communicatable with each client and each 

10 server, and wherein: the digital certificate management 
apparatus includes: a proof key updating unit which 
updates a proof key used for proving validity of the 
digital certificate used for the mutual authentication 
by each client and each server; and an updating order 

15 control unit controlling a procedure of updating the 

proof key performed by the proof key updating unit based 
on information concerning the respective nodes included 
in the client and server system as to a communication 
counterpart of each node and as to whether each of the 

20 node and the counterpart acts as a client or a server, 
and wherein: the proof key updating unit includes: a 
unit configured to acquire a new proof key for updating; 
a unit configured to acquire a new digital certificate, 
used for the mutual authentication, for which validity 

25 can be proved with the use of the new proof key; a first 
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transmitting unit transmitting a new client certificate 
which is the new digital certificate for each client, 
and the new proof key, to the relevant client; and a 
second transmitting unit transmitting a new server 
5 certificate which is the new digital certificate for 
each server, and the new proof key, to the relevant 
server, and wherein: the updating order control unit 
controls the updating procedure so that the second 
transmitting unit performs the operation of transmitting 

10 the new server certificate to each server after 
receiving, from all the clients which act as 
communication counterparts of the relevant server, 
information indicating that the relevant clients have 
received the new proof keys, and the first transmitting 

15 unit performs the operation of transmitting the new 
client certificate to each client after receiving 
information, from all "the servers which act as 
communication counterparts of the relevant client, 
indicating that the relevant servers have received the 

20 new proof keys. 

According to another aspect of the present 
invention, a digital certificate management system 
includes: a client and server system in which one or a 
plurality of clients and one or a plurality of servers 

25 are provided, mutual authentication is performed between 
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each client and each sever with the use of a digital 
certificate, and data transmission is performed 
therebetween with a path established through the 
authentication; and a digital certificate management 
5 apparatus communicatable with each client and each 

server, and wherein: the digital certificate management 
apparatus includes: a proof key updating unit which 
updates a proof key used for proving validity of the 
digital certificate used for the mutual authentication 

10 by each client and each server; and an updating order 
control unit controlling a procedure of updating the 
proof key performed by the proof key updating unit based 
on information concerning the respective nodes included 
in the client and server system as to a communication 

15 counterpart of each node and as to whether each of the 
node and the counterpart acts as a client or a server, 
and wherein: the proof key updating unit includes: a 
unit configured to acquire a new proof key for updating; 
a unit configured to acquire a new digital certificate 

20 used for the mutual authentication for which validity 

can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for each client, 
and the new proof key, to the client; and a second 

25 transmitting unit transmitting a new server certificate 



-33- 

which is the new digital certificate for each server, 
and the new proof key, to the server, and wherein: the 
updating order control unit controls the updating 
procedure so that the first transmitting unit performs 
5 the operations of transmitting the new client 

certificate and the new proof key to each client at the 
same time, and the second transmitting unit performs the 
operations of transmitting the new server certificate 
and the new proof key to each server at the same time 
10 after receiving information, from all the clients which 

act as communication counterparts of the relevant server, 
indicating that the clients have received the new proof 
key. 

In any of the above-mentioned digital 
15 certificate management systems, each server may have an 
intermediary function for communication between the 
digital certificate management apparatus and at least 
one of the clients; the digital certificate management 
apparatus and each client may perform data transmission 
20 mutually via any of the servers; and the server may 
transmit the new proof key and/or the new client 
certificate to the client, transmitted from the first 
transmitting unit of the digital certificate management 
apparatus for the client, via the communication 
25 established through authentication performed with the 
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client which is a transmission destination with the use 
of an old digital certificate. 

Alternatively, in any of the above-mentioned 
digital certificate management systems, each client may 
5 have an intermediary function for communication between 
the digital certificate management apparatus and at 
least one of the servers; the digital certificate 
management apparatus and each server may perform data 
transmission mutually together via any of the clients; 

10 and the client may transmit the new proof key and/or the 
new server certificate to the server, transmitted from 
the second transmitting unit of the digital certificate 
management apparatus for the server, via the 
communication established through authentication 

15 performed with the server which is a transmission 

destination with the use of an old digital certificate. 

Furthermore, in the digital certificate 
management system, the authentication performed between 
the client and the server may be authentication 

20 according to an SSL or TLS protocol; and the server 
certificate may be a public key certificate for the 
server . 

A digital certificate management apparatus, 
according to the present invention, communicatable with 
25 one or a plurality of clients and one or a plurality of 
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servers which configure a client and server system, 
includes: a proof key updating unit updating a proof key 
used for proving validity of the digital certificate 
used for authentication by the server, whereby 
5 communication is established between each client and 
each server; and a updating order control unit 
controlling a procedure of updating the proof key 
performed by the proof key updating unit based on 
information concerning the respective nodes included in 

10 the client and server system as to a communication 

counterpart of each node and as to whether each of the 
node and the counterpart acts as a client or a server, 
and wherein: the proof key updating unit includes: a 
unit configured to acquire a new proof key for updating; 

15 a unit configured to acquire a new digital certificate 
used for the authentication for which validity can be 
proved with the use of the new proof key; a first 
transmitting unit transmitting the new proof key to each 
client; and a second transmitting unit transmitting a 

20 new server certificate which is the new digital 

certificate for each server to the relevant server, and 
wherein: the updating order control unit controls the 
updating procedure so that second transmitting unit 
performs the operation of transmitting the new server 

25 certificate to the relevant server after receiving from 
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all the clients, which act as communication counterparts 
of the server, information indicating that the clients 
have received the new proof keys. 

In this digital certificate management 
5 apparatus, the proof key updating unit may preferably 
include a unit configured to acquire a proof key 
certificate, including the new proof key, which is the 
digital certificate for which validity can be proved 
with the use of an old proof key, and wherein: the first 

10 transmitting unit may preferably be configured to 

transmit the new proof key in a form of the proof key 
certificate to the client. 

Furthermore, in the digital certificate 
management apparatus, the proof key updating unit may 

15 include: a unit configured to acquire a first proof key 
certificate, including the new proof key, which is the 
digital certificate for which validity can be proved 
with the use of an old proof key; and a unit configured 
to acquire a second proof key certificate, including the 

20 new proof key, which is the digital certificate for 
which validity can be proved with the use of the new- 
proof key, and wherein: the first transmitting unit is 
configured to transmit the new proof keys in respective 
forms of the first proof key certificate and the second 

25 proof key certificate to each client; and each client 
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includes: a unit, which when storing the second proof 
key certificate, deletes the old proof key certificate 
and the first proof key certificate, and wherein: the 
updating order control unit in the digital certificate 
5 management apparatus is configured to perform control 

such that the operation of transmitting the second proof 
key certificate to each client from the first 
transmitting unit is performed at least after receiving 
information from all the servers which act as 

10 communication counterparts of the client indicating that 
the servers have received the new server certificate. 

According to another aspect of the present 
invention, a digital certificate management apparatus 
communicatable with one or a plurality of clients and 

15 one or a plurality of servers which configure a client 
and server system, includes: a proof key updating unit 
updating a proof key used for proving validity of the 
digital certificate used for mutual authentication, 
whereby communication is established between each client 

20 and each server; and an updating order control unit 
controlling a procedure of updating the proof key 
performed by the proof key updating unit based on 
information concerning the respective nodes included in 
the client and server system as to a communication 

25 counterpart of each node and as to whether each of the 
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node and the counterpart acts as a client or a server, 
and wherein: the proof key updating unit includes: a 
unit configured to acquire a new proof key for updating; 
a unit configured to acquire a new digital certificate, 
5 used for the mutual authentication, for which validity 
can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for each client, 
and the new proof key, to the relevant client; and a 

10 second transmitting unit transmitting a new server 

certificate which is the new digital certificate for 
each server, and the new proof key, to the relevant 
server, and wherein: the updating order control unit 
controls the updating procedure so that the second 

15 transmitting unit performs the operation of transmitting 
the new server certificate to each server after 
receiving, from all the clients which act as 
communication counterparts of the relevant server, 
information indicating that the relevant clients have 
.20 received the new proof keys, and the first transmitting 
unit performs the operation of transmitting the new 
client certificate to each client after receiving 
information, from all the servers which act as 
communication counterparts of the relevant client, 

25 indicating that the relevant servers have received the 
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new proof keys . 

According to another aspect of the present 
invention, a digital certificate management apparatus 
communicatable with one or a plurality of clients and 
5 one or a plurality of servers which configure a client 
and server system, includes: a proof key updating unit 
updating a proof key used for proving validity of the 
digital certificate used for mutual authentication, 
whereby communication is established between each client 

10 and each server; and an updating order control unit 
controlling a procedure of updating the proof key 
performed by the proof key updating unit based on 
information concerning the respective nodes included in 
the client and server system as to a communication 

15 counterpart of each node and as to whether each of the 
node and the counterpart acts as a client or a server, 
and wherein: the proof key updating unit includes: a 
unit configured to acquire a new proof key for updating; 
a unit configured to acquire a new digital certificate 

20 used for the mutual authentication for which validity 

can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for each client, 
and the new proof key, to the client; and a second 

25 transmitting unit transmitting a new server certificate 
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which is the new digital certificate for each server, 
and the new proof key, to the server, and wherein: the 
updating order control unit controls the updating 
procedure so that the first transmitting unit performs 
5 the operations of transmitting the new client 

certificate and the new proof key to each client at the 
same time, and the second transmitting unit performs the 
operations of transmitting the new server certificate 
and the new proof key to each server at the same time 
10 after receiving information, from all the clients which 

act as communication counterparts of the relevant server, 
indicating that the clients have received the new proof 
keys . 

Any of the above-mentioned digital certificate 
15 management apparatuses may perform data transmission 

with each client via any of the servers; and the server 
may transmit the new proof key and/or the new client 
certificate to the client, transmitted from the first 
transmitting unit of the digital certificate management 
20 apparatus for the client, via the communication 

established through authentication performed with the 
client which is a transmission destination with the use 
of an old digital certificate. 

Alternatively, any of the above-mentioned 
25 digital certificate management systems may perform data 
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transmission with each server via any of the clients; 
and the client may transmit the new proof key and/or the 
new server certificate to the server, transmitted from 
the second transmitting unit of the digital certificate 
5 management apparatus for the server, via the 

communication established through authentication 
performed with the server which is a transmission 
destination with the use of an old digital certificate. 
Furthermore, in the digital certificate 
10 management apparatus, the authentication performed 

between the client and the server may be authentication 
according to an SSL or TLS protocol ; and the server 
certificate may be a public key certificate for the 
server . 

15 According to the present invention, in a 

digital certificate management method for managing by a 
digital certificate management apparatus communicatable 
with a server and a client which configure a client and 
server system, a digital certificate used for 

20 authentication whereby communication is established 

between the server and the client, the following steps 
are performed: a) the digital certificate management 
apparatus updating a proof key used for proving validity 
of the digital certificate used for authentication by 

25 the server, and wherein the step d) includes the steps 
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of: a-1) acquiring a new proof key for updating; and a- 
2) acquiring a new digital certificate used for the 
authentication for which validity can be proved with the 
use of the new proof key; b-1) transmitting the new 
5 proof key to the client; and b-2) transmitting a new 
server certificate which is a new digital certificate 
for the server to the server after receiving, from the 
client, information indicating that the client has 
received the new proof key. 

10 In the digital certificate management method, 

the step a) may further include the step of: a-3) 
acquiring a proof key certificate, which is the digital 
certificate, including the new proof key, for which 
validity can be proved with the use of an old proof key; 

15 the step b-1) includes the step of: b-3) transmitting 

the new proof key in a form of the proof key certificate 
to the client; and when transmitting the proof key 
certificate to the client, the client is caused to prove 
validity of the received proof key certificate with the 

20 use of the old proof key and store the proof key 

included in the proof key certificate when determining 
that the proof key is an appropriate one. 

Furthermore, in the digital certificate 
management method, the step a) may further include the 

25 steps of: a-4) acquiring a first proof key certificate, 
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including the new proof key, which is the digital 
certificate for which validity can be proved with the 
use of an old proof key; and a-5) acquiring a second 
proof key certificate, including the new proof key, 
5 which is the digital certificate for which validity can 
be proved with the use of the new proof key, and 
wherein: the step b-1) includes the step of transmitting 
the new proof keys in respective forms of the first 
proof key certificate and the second proof key 

10 certificate to the client; after the completion of the 
step b-2) , the second proof key certificate is 
transmitted to the client at least after information 
indicating that the server has received the new server 
certificate is- received; when the first proof key 

15 certificate is transmitted to the client, the client is 
caused to prove validity of the received certificate 
with the use of the old proof key and store the 
certificate when determining that it is an appropriate 
one; and when the second proof key certificate is 

20 transmitted to the client, the client is caused to prove 
validity of the received certificate with the use of the 
new proof key included in the first proof key 
certificate, and store the second proof key certificate 
when determining that it is an appropriate one, and then 

25 delete the old proof key certificate and the first proof 
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key certificate. 

According to another aspect of the present 
invention, a digital certificate management method for 
managing by a digital certificate management apparatus 
5 communicatable with a server and a client which 
configure a client and server system, a digital 
certificate used for mutual authentication whereby 
communication is established between the server and the 
client, includes the steps of: a) the digital 

10 certificate management apparatus updating a proof key 
used for proving validity of the digital certificate 
used for the mutual authentication by the client and the 
server, and wherein: the step a) includes the steps of; 
a-1) acguiring a new proof key for updating; and a-2) 

15 acquiring a new digital certificate used for the mutual 
authentication for which validity can be proved with the 
use of the new proof key; b-1) transmitting the new 
proof key to the server; b-2) transmitting the new proof 
key to the client; b-3) transmitting a new client 

20 certificate which is the new digital certificate for the 
client to the client; and b-4) transmitting a new server 
certificate which is the new digital certificate for the 
server to the server; and wherein: the step b-4) is 
performed after the completion of the step b-2) , and 

25 after information indicating that the client has 
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received the new proof key from the client, and also, 
the step b-3) is performed after the completion of the 
step b-1) , and after information indicating that the 
server has received the new proof key from the server. 
5 In the digital certificate management method, 

the step b-3) may be performed at the same time or after 
the completion of the step b-2) , and also, the step b-4) 
may be. performed at the same time or after the 
completion of the step b-1) . 

10 According to another aspect of the present 

invention, a digital certificate management method for 
managing by a digital certificate management apparatus 
communicatable with a server and a client which 
configure a client and server system, a digital 

15 certificate used for mutual authentication whereby 

communication is established between the server and the 
client, includes the steps of: a) the digital 
certificate management apparatus updating a proof key 
used for proving validity of the digital certificate 

20 used for the mutual authentication by the client and the 
server, and wherein: the step a) includes the steps of; 
a-1) acquiring a new proof key for updating; a-2) 
acquiring a new digital certificate used for the mutual 
authentication for which validity can be proved with the 

25 use of the new proof key; b-1) transmitting the new 
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proof key to the server; b-2) transmitting the new proof 
key to the client; b-3) transmitting a new client 
certificate which is the new digital certificate for the 
client to the client; and b-3) transmitting a new server 
5 certificate which is the new digital certificate for the 
server to the server, and wherein: the steps b-2) and b- 
3) are performed at the same time, and also, after the 
completion of these steps, and, after information 
indicating that the client has received the new proof 

10 key is received, the steps b-1) and b-4) are performed 
at the same time. 

In any of the above-mentioned digital 
certificate management methods, the digital certificate 
management apparatus and the client may perform data 

15 • transmission mutually via the server; and the server may 
transmit the new proof key and/or the new client 
certificate to the client, transmitted in the step b-2 
and/or the step b-3 for the client, via the 
communication established through authentication 

20 performed with the client with the use of an old digital 
certificate . 

Alternatively, in any of the digital 
certificate management methods, the digital certificate 
management apparatus and the server may perform data 

25 transmission mutually via the client; and the client may 
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transmit the new proof key and/or the new server 
certificate to the server, transmitted in the step b-1) 
and/or the step b-4) for the server, via the 
communication established through authentication 
5 performed with the server with the use of an old digital 
certificate . 

Furthermore, in any of the digital certificate 
management methods, the authentication performed between 
the client and the server may be authentication 
10 according to an SSL or TLS protocol; and the server 
certificate may be a public key certificate for the 
server . 

According to the present invention, a digital 
certificate management method for managing, by a digital 

15 certificate management apparatus communicatable with one 
or a plurality of servers and one or a plurality of 
clients which configure a client and server system, a 
digital certificate used for mutual authentication 
whereby communication is established between the one or 

20 the plurality of servers and the one or the plurality of 
clients, includes the steps of: a) the digital 
certificate management apparatus updating a proof key 
used for proving validity of the digital certificate 
used for the mutual authentication by each server, based 

25 on an updating procedure determined according to 
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information concerning the respective nodes included in 
the client and server system as to a communication 
counterpart of each node and as to whether each of the 
node and the counterpart acts as a client or a server, 
5 and wherein: the step a) includes the steps of: a-1) 

acquiring a new proof key for updating; a-2) acquiring a 
new digital certificate used for the authentication for 
which validity can be proved with the use of the new 
proof key; a-3) transmitting the new proof key to each 

10 client; and a-4) transmitting a new server certificate 
which is the new digital certificate for each server to 
the server, and wherein: the updating procedure is 
configured so the step a-4) is performed after 
information indicating that the clients have received 

15 the new proof key is received from all the clients, 

which act as communication counterparts of the relevant 
server . 

In the digital certificate management method, 
the step a) may further includes the steps of: a-5) 

20 acquiring a proof key certificate, including the new 
proof key, which is the digital certificate for which 
validity can be proved with the use of an old proof key, 
and wherein: the step a-3) includes the step of 
transmitting the new proof key in a form of the proof 

25 key certificate to the client; and when the proof key 
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certificate is transmitted to the client, the client is 
caused to prove validity of the received proof key 
certificate with the use of the old proof key and store 
the proof key included in the proof key certificate when 
5 determining that the proof key is an appropriate one. 
I Furthermore, in the digital certificate 

I management method, the step a) may further include the 

i ■ . 

step of: a-6) acquiring a first proof key certificate, 
including the new proof key, which is the digital 

i 

10 certificate for which validity can be proved with the 
use of an old proof key; and a-7) acquiring a second 
I proof key certificate, including the new proof key, 

which is the digital certificate for which validity can 
be proved with the use of the new proof key, and 

15 wherein: the step a-3) may include the step of 

transmitting the new proof keys in respective forms of 
the first proof key certificate and the second proof key 
certificate to each client; the step a) may be 
configured so that the operation of transmitting the 

20 second proof key certificate to each client from the 
first transmitting unit is performed at least after 
receiving information from all the servers which act as 
communication counterparts of the client indicating that 
the servers have received the new server certificates; 

25 each client may be caused to be responsive to reception 
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of the first proof key certificate from the digital 
certificate management apparatus, for proving validity 
of the received certificate with the use of the old 
proof key and storing the certificate when determining 
5 that it is an appropriate one; and the client may be 

caused to be responsive to reception of the second proof 
key certificate from the digital certificate management 
apparatus for proving validity of the received 
certificate with the use of the new proof key included 

10 in the second proof key certificate and storing the 

second proof key certificate when determining that it is 
an appropriate one, and then to delete the old proof key 
certificate and the first proof key certificate. 

According to another aspect of the present 

15 invention, a digital certificate management method for 
managing, by a digital' certificate management apparatus 
communicatable with one or a plurality of servers and 
one or a plurality of clients which configure a client 
and server system, a digital certificate used for mutual 

20 authentication whereby communication is established 

between the one or the plurality of servers and the one 
or the plurality of clients, includes the steps of: a) 
the digital certificate management apparatus updating a 
proof key used for proving validity of the digital 

25 certificate used for the mutual authentication by each 
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client and each server based on an updating procedure 
determined according to information concerning the 
respective nodes included in the client and server 
system as to a communication counterpart of each node 
5 and as to whether each of the node and the counterpart 
acts as a client or a server, and wherein: the step a) 
includes: a-1) acquiring a new proof key for updating; 
a-2) acquitting a new digital certificate, used for the 
mutual authentication, for which validity can be proved 

10 with the use of the new proof key; a-3) transmitting a 
new client certificate which is the new digital 
certificate for each client, and the new proof key, to 
the relevant client; and a-4) transmitting a new server 
certificate which is the new digital certificate for 

15 each server, and the new proof key, to the relevant 
server, and wherein: the updating procedure is 
configured so that the step a-4) is performed after 
information indicating that the relevant clients have 
received the new proof key is received from all the 

20 clients which act as communication counterparts of the 
relevant server, and the step a-3) is performed after 
information indicating that the relevant servers have 
received the new proof key is received from all the 
servers which act as communication counterparts of the 

25 relevant client. 
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According to another aspect of the present 
invention, a digital certificate management method for 
managing, by a digital certificate management apparatus 
communicatable with one or a plurality of servers and 
5 one or a plurality of clients which configure a client 
and server system, a digital certificate used for mutual 
authentication whereby communication is established 
between the one or the plurality of servers and the one 
or the plurality of clients, includes the steps of: a) 

10 the digital certificate management apparatus updating a 
proof key used for proving validity of the digital 
certificate used for the mutual authentication by each 
client and each server based on an updating procedure 
determined according to information concerning the 

15 respective nodes included in the client and server 

system as to a communication counterpart of each node 
and as to whether each of the node and the counterpart 
acts as a client or a server, and wherein: the step a) 
includes the steps of: a-1) acquiring a new proof key 

20 for updating; a-2) acquiring a new digital certificate 
used for the mutual authentication for which validity 
can be proved with the use of the new proof key; a-3) 
transmitting a new client certificate which is the new 
digital certificate for each client, and the new proof 

25 key, to the client; and a-4) transmitting a new server 
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certificate which is the new digital certificate for 
each server, and the new proof key, to the server, and 
wherein: the updating procedure is configured so that 
operations of transmitting the new client certificate 
5 and the new proof key to each client are performed at 
the same time, and operations of transmitting the new 
server certificate and the new proof key to each server 
are performed at the same time after information 
indicating that the clients have received the new proof 

10 key is received from all the clients which act as 
communication counterparts of the relevant server. 

In any of the above-mentioned digital 
certificate management methods, the digital certificate 
management apparatus and each client may perform data 

15 transmission mutually via any of the servers; and the 
server may transmit the new proof key and/or the new 
client certificate to the client, transmitted from the 
digital certificate management apparatus for the client, 
in the step a-3), via the communication established 

20 through authentication performed with the client which 
is a transmission destination with the use of an old 
digital certificate . 

Alternatively, in any of the above-mentioned 
digital certificate management method, the digital 

25 certificate management apparatus and each server may 
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perform data transmission mutually via any of the 
clients; and the client may transmit the new proof key 
and/or the new server certificate to the server, 
transmitted from the digital certificate management 
5 apparatus for the server in the step a-4) , via the 
communication established through authentication 
performed with the server which is a transmission 
destination with the use of an old digital certificate. 

Furthermore, in any of the digital certificate 
10 management methods, the authentication performed between 
the client and the server may be authentication 
according to an SSL or TLS protocol; and the server 
certificate may be a public key certificate for the 
server . 

15 According to the present invention, an 

updating procedure determining method for determining an 
updating procedure to be stored in one or a plurality of 
clients and one or a plurality of servers which 
configure a client and server system, for updating by a 

20 digital certificate management apparatus a proof key 

used for proving validity of a digital certificate used 
by each server when communication is established between 
the one or the plurality of clients and the one or the 
plurality of servers, includes the step of: the digital 

25 certificate management apparatus determining the 
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updating procedure based on information based on 
information concerning the respective nodes included in 
the client and server system as to a communication 
counterpart of each node and as to whether each of the 
5 node and the counterpart acts as a client or a server so 
that a step of transmitting a new server certificate 
which is a new digital certificate for which validity 
can be proved with the use of a new proof key for 
updating used for the authentication by the server is 

10 performed after information indicating that all the 

clients which act as communication counterparts of the 
server is received from the clients. 

According to the present invention , a program 
for causing a computer, which controls a digital 

15 certificate management apparatus communicatable with a 
client and a server which configure a client and server 
system, to perform a proof key updating step of updating 
a proof key used for proving validity of a digital 
certificate used by the server for authentication 

20 performed when communication is established between the 
client and the server, is configured to cause the 
computer to function as: a unit configured to acquire a 
new proof key for updating; a unit configured to acquire 
a new digital certificate used for the authentication 

25 for which validity can be proved with the use of the new 
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proof key; a first transmitting unit transmitting the 
new proof key to the client; and a second transmitting 
unit transmitting a new server certificate which is a 
new digital certificate for the server to the server, 
5 and wherein: the second transmitting unit performs the 
operation of transmitting the new server certificate to 
the server after receiving from the client information 
indicating that the client has received the new proof 
key . 

10 In this program, another program may be 

preferably included causing the computer to function as 
a unit to acquire a proof key certificate, including the 
new proof key, which is the digital certificate for 
which validity can be proved with the use of an old 

15 proof key, and wherein: the first transmitting unit may 
preferably be configured to transmit the new proof key 
in a form of the proof key certificate to the client. 

Furthermore, it is preferable to further 
provide a program further causing the computer to 

20 function as a unit configured to acquire a first proof 
key certificate, including the new proof key, which is 
the digital certificate for which validity can be proved 
with the use of an old proof key; and a unit configured 
to acquire a second proof key certificate, including the 

25 new proof key, which is the digital certificate for 
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which validity can be proved with the use of the new 
proof key, and wherein: the first transmitting unit is 
configured to transmit the new proof keys in respective 
forms of the first proof key certificate and the second 
5 proof key certificate to the client; and the client is 
made to function as: a unit, which when storing the 
second proof key certificate, delete the old proof key 
certificate and the first proof key certificate, and 
wherein: the updating order control unit is configured 

10 to perform control such that the operation of 

transmitting the second proof key certificate to the 
client from the first transmitting unit is performed at 
least after receiving information from the server 
indicating that the server has received the new server 

15 certificate. 

According to another aspect of the present 
invention, a program for causing a computer, which 
controls a digital certificate management apparatus 
communicatable with a client and a server which 

20 configure a client and server system, to perform a proof 
key updating step of updating a proof key used for 
proving validity of a digital certificate used by the 
server for authentication performed when communication 
is established between the client and the server, is 

25 configured to cause the computer to function as: a unit 
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configured to acquire a new proof key for updating; a 
unit configured to acquire a new digital certificate 
used for the mutual authentication for which validity 
can be proved with the use of the new proof key; a first 
5 transmitting unit transmitting a new client certificate 
which is the new digital certificate for the client, and 
the new proof key, to the client; and a second 
transmitting unit transmitting a new server certificate 
which is the new digital certificate for the server, and 

10 the new proof key, to the server, and wherein: the 
second transmitting unit performs the operation of 
transmitting the new server certificate to the server 
after receiving from the client information indicating 
that the client has received the new proof key; and the 

15 first transmitting unit performs the operation of 

transmitting the new client certificate to the client 
after receiving information from the server indicating 
that the server has received the new proof key. 

According to another aspect of the present 

20 invention, a program for causing .a computer, which 
controls a digital certificate management apparatus 
comraunicatable with a client and a server which 
configure a client and server system, to perform a proof 
key updating step of updating a proof key used for 

25 proving validity of a digital certificate for mutual 
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authentication performed when communication is 
established between the client and the server, is 
configured to cause the computer to function as: a unit 
configured to acquire a new proof key for updating; a 
5 unit configured to acquire a new digital certificate 
used for the mutual authentication for which validity 
can be proved with the use of the new proof key; a first 
transmitting unit transmitting a new client certificate 
which is the new digital certificate for the client, and 

10 the new proof key, to the client; and a second 

transmitting unit transmitting a new server certificate 
which is the new digital certificate for the server, and 
the new proof key, to the server, and wherein: the first 
transmitting unit has a function of performing the 

15 operations of transmitting the new client certificate 
and the new proof key to the client at the same time; 
and the second transmitting unit has a function of 
performing the operations of transmitting the new server 
certificate and the new proof key to the server at the 

20 same time after receiving information from the client 
indicating that the client has received the new proof 
key . 

In any of these programs, it is preferable to 
provide anther program to further cause the computer to 
25 function as a unit to perform data transmission with the 
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client via the server; and the server may preferably 
transmit the new proof key and/or the new client 
certificate to the client, transmitted from the digital 
certificate management apparatus for the client, via the 
5 communication established through authentication 

performed with the client with the use of. an old digital 
certificate. 

Alternatively, in any of these programs, it is 
preferable to provide another program to further cause 

10 the computer to function as a unit to perform data 

transmission with the server via the client; and the 
client may preferably transmit the new proof key and/or 
the new server certificate to the server, transmitted 
from the digital certificate management apparatus for 

15 the server, via the communication established through 

authentication performed with the server with the use of 
an old digital certificate. 

Furthermore, in any of the above-mentioned 
programs, the authentication performed between the 

20 client and the server may preferably be authentication 
according to an SSL or TLS protocol; and the server 
certificate may preferably be a public key certificate 
for the server. 

According to another aspect of the present 

25 invention, a program is configured to cause a computer, 



which controls a digital certificate management 
apparatus communicatable with one of a plurality of 
clients and one or a plurality of servers which 
configure a client and server system, to function as: a 
proof key updating unit updating a proof key used for 
proving validity of the digital certificate used for 
authentication by each server for establishing 
communication between each server and each client; and 
an updating order control unit controlling a procedure 
of updating the proof key performed by the proof key 
updating unit based on information concerning the 
respective nodes included in the client and server 
system as to a communication counterpart of each node 
and as to whether each of the node and the counterpart 
acts as a client or a server, and wherein: the proof key 
updating unit includes: a unit configured to acquire a 
new proof key for updating; a unit configured to acquire 
a new digital certificate used for the authentication 
for which validity can be proved with the use of the new 
proof key; a first transmitting unit transmitting the 
new proof key to each client; and a second transmitting 
unit transmitting a new server certificate which is a 
new digital certificate for each server to the relevant 
server, and wherein: the updating order control unit 
controls the updating procedure so that the second 
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transmitting unit performs the operation of transmitting 
the new server certificate to the respective server 
after receiving from all the clients, which act as 
communication counterparts of the server, information 
5 indicating that the clients have received the new proof 
key . 

In this program, another program may be 
preferably included causing the computer to further 
function as a unit to acquire a proof key certificate, 

10 including the new proof key, which is a digital 

certificate for which validity can be proved with the 
use of an old proof key, and wherein: the first 
transmitting unit may preferably be configured to 
transmit the new proof key in a form of the proof key 

15 certificate to each client. 

Furthermore, it is preferable to further 
provide a program further causing the computer to 
further function as a unit configured to acquire a first 
proof key certificate, including the new proof key, 

20 which is a digital certificate for which validity can be 
proved with the use of an old proof key; and a unit 
configured to acquire a second proof key certificate, 
including the new proof key, which is a digital 
certificate for which validity can be proved with the 

25 use of the new proof key, and wherein: the first 
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transmitting unit is configured to transmit the new 
proof keys in respective forms of the first proof key 
certificate and the second proof key certificate to each 
client; and each client is caused to function as: a unit, 
5 which when storing the second proof key certificate, 

delete the old proof key certificate and the first proof 
key certificate, and wherein: the updating order control 
unit in the digital certificate management apparatus is 
configured to perform control such that the operation of 

10 transmitting the second proof key certificate to each 

client from the first transmitting unit is performed at 
least after receiving information from all the servers 
which act as communication counterparts of the client 
indicating that the servers have received the new server 

15 certificates. 

According to another aspect of the present 
invention, a program is configured to cause a computer, 
which controls a digital certificate management 
apparatus communicatable with one of a plurality of 

20 clients and one or a plurality of servers which 

configure a client and server system, to function as: a 
proof key updating unit updating a proof key used for 
proving validity of the digital certificate used for 
mutual authentication for establishing communication 

25 between each server and each client; and an updating 
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order control unit controlling a procedure of updating 
the proof key performed by the proof key updating unit 
based on information concerning the respective nodes 
included in the client and server system as to a 
5 communication counterpart of each node and as to whether 
each of the node and the counterpart acts as a client or 
a server, and wherein: the proof key updating unit has 
functions of: a unit configured to acquire a new proof 
key for updating; a unit configured to acquire a new 

10 digital certificate, used for the mutual authentication, 
for which validity can be proved with the use of the new 
proof key; a first transmitting unit transmitting a new 
client certificate which is the new digital certificate 
for each client, and the new proof key, to the relevant 

15 client; and a second transmitting unit transmitting a 
new server certificate which is the new digital 
certificate for each server, and the new proof key, to 
the relevant server, and wherein: the updating order 
control unit is configured to control the updating 

20 procedure so that the second transmitting unit performs 
the operation of transmitting the new server certificate 
to each server after receiving, from all the clients 
which act as communication counterparts of the relevant 
server, information indicating that the relevant clients 

25 have received the new proof keys, and the first 
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transmitting unit performs the operation of transmitting 
the new client certificate to each client after 
receiving information, from all the servers which act as 
communication counterparts of the relevant client, 
5 indicating that the relevant servers have received the 
new proof keys. 

According to another aspect of the present 
invention, a program is configured to cause a computer, 
which controls a digital certificate management 

10 apparatus communicatable with one of a plurality of 
clients and one or a plurality of servers which 
configure a client and server system, to function as: a 
proof key updating unit updating a proof key used for 
proving validity of the digital certificate used for 

15 mutual authentication for establishing communication 
between each server and each client; and an updating 
order control unit controlling a procedure of updating 
the proof key performed by the proof key updating unit 
based on information concerning the respective nodes 

20 included in the client and server system as to a 

communication counterpart of each node and as to whether 
each of the node and the counterpart acts as a client or 
a server, and wherein: the proof key updating unit has 
functions of: a unit configured to acquire a new proof 

25 key for updating; a unit configured to acquire a new 
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digital certificate used for the mutual authentication 
for which validity can be proved with the use of the new 
proof key; a first transmitting unit transmitting a new 
client certificate which is the new digital certificate 
5 for each client, and the new proof key, to the client; 

and a second transmitting unit transmitting a new server 
certificate which is the new digital certificate for 
each server, and the new proof key, to the server, and 
wherein: the updating order control unit is configured 

10 to control the updating procedure so that the first 
transmitting unit performs the operations of 
transmitting the new client certificate and the new 
proof key to each client at the same time, and the 
second transmitting unit performs the operations of 

15 transmitting the new server certificate and the new 
proof key to each server at the same time after 
receiving information, from all the clients which act as 
communication counterparts of the relevant server, 
indicating that the clients have received the new proof 

20 keys. 

In any of these programs, it is preferable to 
provide another program to further cause the computer to 
function as a unit to perform data transmission with 
each client via the server; and the server may 
25 preferably transmit the new proof key and/or the new 
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client certificate to the client, transmitted from the 
first transmitting unit of the digital certificate 
management apparatus for the client, via the 
communication established through authentication 
5 performed with the client with the use of an old digital 
certificate . 

Alternatively, in any of these programs, it is 
preferable to provide a program to cause the computer to 
function as a unit to perform data transmission with the 

10 server via each client; and the client may preferably 
transmit the new proof key and/or the new server 
certificate to the server, transmitted from the second 
transmitting unit of the digital certificate management 
apparatus for the server, via the communication 

15 established through authentication performed with the 
server with the use of an old digital certificate. 

Furthermore, in any of the above-mentioned 
programs, the authentication performed between the 
client and the server may preferably be authentication 

20 according to an SSL or TLS protocol; and the server 

certificate may preferably be a public key certificate 
for the server. 

According to the digital certificate 
management system, the digital certificate management 

25 apparatus, and the digital certificate management method 
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in the present invention described above, it becomes 
possible to safely update the authentication public key 
used for proving validity of the digital certificate in 
authentication processing in the client and server 
5 system, without providing a special communication path 
for the updating processing. 

According to the updating order determining 
method in the present invention, it is possible to 
determine an appropriate procedure in processing to 

10 update the proof key, and thus, the same advantage can 
be obtained by performing the updating processing 
according to the thus-obtained procedure. 

Further, according to the program in the 
present invention, it is possible to cause a computer to 

15 control the digital certificate management apparatus, so 
that the above-mentioned features of the digital 
certificate management apparatus are achieved, and thus 
the same advantage can be obtained. 

2 0 BRIEF DESCRIPTION OF THE DRAWINGS 

Other objects and further features of the . 
present invention will become more apparent from the 
following detailed description when read in conjunction 
with the following accompanying drawings: 

25 FIG. 1 shows a block diagram illustrating a 



-69- 



hardware configuration of a certificate management 
apparatus in embodiments of a digital certificate 
management apparatus according to the present invention; 

FIG. 2 shows a functional block diagram 
5 illustrating respective apparatuses in a first 

embodiment of a digital certificate management system 
according to the present invention; 

FIGS . 3A and 3B illustrate concept of a data 
transmission model in the digital certificate management 
10 system shown in FIG. 2; 

FIG. 4 shows a flow chart of operations 
performed by the respective apparatuses when mutual 
authentication according to SSL is performed between a 
server apparatus and a client apparatus together with 
15 information employed there; 

FIG. 5 shows a flow chart of operations 
performed by the respective apparatuses when single 
directional authentication according to SSL is performed 
between the server apparatus and the client apparatus 
20 together with information employed there; 

FIG. 6 shows a sequence diagram illustrating a 
root key certificate creation processing in root key 
updating processing in the digital certificate 
management system shown in FIG . 2 ; 
25 FIG. 7 shows a sequence diagram illustrating 
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root key certificate storage processing in the server 
apparatus in the same; 

FIG. 8 shows a sequence diagram illustrating 
root key certificate storage processing in the client 
5 apparatus in the same; 

FIG. 9 shows a sequence diagram illustrating 
public key certificate storage processing in the client 
apparatus in the same; 

FIG. 10 shows a sequence diagram illustrating 
10 public key certificate storage processing in the server 
apparatus in the same; 

FIG. 11 shows a sequence diagram illustrating 
root key certificate updating processing in the server 
apparatus in the same ; 
15 FIG. 12 shows a sequence diagram illustrating 

root key certificate updating processing in the client 
apparatus in the same; 

FIG. 13 shows a flow chart illustrating an 
order of execution of respective processing shown in the 
20 sequence diagrams shown in FIGS. 6 through 12; 

FIG. 14 shows a variant example of the 
sequence shown in FIG. 7; 

FIG. 15 shows a variant example of the 
sequence shown in FIG. 8; 
25 FIG. 16 shows a functional block diagram 
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illustrating respective apparatuses in a second 
embodiment of a digital certificate management system 
according to the present invention; 

FIG. 17 shows a sequence diagram illustrating 
5 a root key certificate storage processing in the server 
apparatus in root key updating processing in the digital 
certificate management system shown in FIG. 16; 

FIG. 18 shows a sequence diagram illustrating 
root key certificate storage processing in the client 
10 apparatus in the same; 

FIG. 19 shows a sequence diagram illustrating 
public key certificate storage processing in the client 
apparatus in the same; 

FIG. 20 shows a sequence diagram illustrating 
15 public key certificate storage processing in the server 
apparatus in the same; 

FIG. 21 shows a sequence diagram illustrating 
root key certificate updating processing in the server 
apparatus in the same; 
20 FIG. 22 shows a sequence diagram illustrating 

root key certificate updating processing in the client 
apparatus in the same; 

FIG. 23 shows a flow chart illustrating an 
order of execution of respective processing shown in the 
25 sequence diagrams shown in FIGS. 6 and 17 through 22; 
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FIG. 2 4 shows a sequence diagram illustrating 
a part of root key updating processing in a third 
embodiment of a digital certificate management system 
according to the present invention; 
5 FIG. 25 shows a sequence diagram subsequent to 

the same shown in FIG. 24; 

FIG. 26 shows a sequence diagram subsequent to 
the same shown in FIG. 25; 

FIG. 27 shows a sequence, diagram subsequent to 
10 the same shown in FIG. 26; 

FIG. 28 shows a sequence diagram illustrating 
root key updating processing subsequent to the same 
shown in FIG. 24 according to a fourth embodiment of a 
digital certificate management system according to the 
15 present invention; 

FIG. 29 shows a sequence diagram subsequent to 
the same shown in FIG. 28; 

FIG. 30 shows a sequence diagram subsequent -to 
the same shown in FIG . 29 ; 
20 FIG. 31 shows a block diagram illustrating 

relationship between respective apparatuses included in 
a fifth embodiment of a digital certificate management 
system according to the present invention; 

FIG. 32 shows an information storage format in 
25 each node storing in configuration storage part shown in 
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FIG. 2; 

FIGS. 33A, 33B and 33C show examples of 
information stored for a server apparatus and a client 
apparatus shown in FIG. 31, when information is stored 
5 in the format shown in FIG. 32; 

FIG. 34 illustrates points of change performed 
when the processing according to the first embodiment is 
applied to the fifth embodiment; 

FIG. 35 shows a flow chart corresponding to 
10 FIG. 13 illustrating execution order of respective 

processing in root key updating processing in the fifth 
embodiment ; 

FIG. 36 shows a flow chart illustrating 
execution order of respective processing in root key 
15 updating processing in a variant embodiment; 

FIG. 37 shows a flow chart, illustrating 
execution order of respective processing in root key 
updating processing in another variant embodiment ; 

FIG. 38 shows a sequence diagram of processing 
20 in case where root key certificate storage processing 
and public key certificate processing in the client 
apparatus are performed together in processing shown in 
FIG. 37; 

FIG. 39 illustrates relationship among 
25 respective apparatuses included in a sixth embodiment of 



-74- 



a digital certificate management system according to the 
present invention ; 

FIGS. 40A, 40B and 40C show examples of 
information stored for a client apparatus 40 and a 
5 server apparatus 30-1 shown in FIG. 39, when information 
is stored in the format shown in FIG. 32; 

FIG. 41 illustrates points of change performed 
when the processing according to the second embodiment 
is applied to the sixth embodiment ; 
10 FIG. 42 shows a flow chart, corresponding to 

FIG. 23, illustrating execution order of respective 
processing in root key updating processing in the sixth 
embodiment ; 

FIG. 43 illustrates execution order of 
15 respective processing in root key updating processing in 
a seventh embodiment; 

FIG. 44 illustrates execution order of 
respective processing in root key updating processing in 
an eighth embodiment; 
20 FIG. 45 shows a block diagram illustrating 

i- 

relationship among respective apparatuses included in a 
variant embodiment applicable to any of the fifth 
through eighth embodiments of the digital certificate 
management system according to the present invention; 
25 FIG. 46 shows a block diagram illustrating 
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relationship among respective apparatuses included in 
another variant embodiment; 

FIG. 47 illustrates start requirements for 
respective processing of the root key updating 
5 processing in the digital certificate management system 
shown in FIG. 46; 

FIG. 48 illustrates start requirements for 
respective processing in case where the root key 
certificate and the public key certificate are stored 
10 together in each node; 

FIG. 49 illustrates root key updating 
processing in another variant embodiment together with 
storage states for the keys and certificates 

FIG. 50 shows a sequence diagram illustrating 
15 public key storage processing in the server apparatus in 
a variant embodiment of each embodiment: 

FIG. 51 shows a sequence diagram illustrating 
root key certificate updating processing in the client 
apparatus in the same; and 
20 FIG. 52 shows a flow chart illustrating 

execution order of respective processing in the same; 

FIGS. 53A and 53B illustrate relationship 
among the root key, the root private key and the server 
public key in authentication processing illustrated in 
25 FIG. 4; 
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FIG. 54 illustrates storage states of keys and 
certificates in another variant embodiment of each of 
the embodiments, and root key updating processing in the 
same case; 

5 FIG. 55 shows a sequence diagram illustrating 

root key certificate creation processing in the other 
variant embodiment; 

FIG. 56 shows a sequence diagram illustrating 
root key certificate storage processing in the client 
10 apparatus in the same case; 

FIG. 57 shows a sequence diagram illustrating 
public key certificate storage processing in the server 
apparatus in the same case; 

FIG. 58 shows a sequence diagram illustrating 
15 root key certificate updating processing in the client 
apparatus in the same case; and 

FIG. 59 shows a flow chart illustrating an 
execution order of the respective processing in the same 
case . 

20. 

DESCRIPTION OF THE PREFERRED EMBODIMENTS 

A first embodiment of the present invention 
will now be described with reference to FIGS. 1 through 
13. A digital certificate management system in the 
25 first embodiment of the present invention includes a 
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certificate management apparatus (digital certificate 
management apparatus) , and a client apparatus and a 
server apparatus which configure a client and server 
system. In this embodiment, the client apparatus and 
5 the server apparatus form the client and server system. 
FIG. 2 shows a block diagram illustrating the respective 
apparatuses included in the digital certificate 
management system. In FIG. 2, indication of 
parts/components which have no particular relevance to 

10 features of the first embodiment of the present 
invention are omitted. 

As shown in FIG. 2, the digital certificate 
management system includes a certificate management 
apparatus 10, a server apparatus 30 and a client 

15 apparatus 40. 

The client apparatus (client) 40 and the 
server apparatus (server) 30 establish communication 
therebetween after they authenticate one another through 
authentication processing with the use of SSL which is 

20 an authentication manner employing a public key encoding 
scheme and a digital certificate. This authentication 
processing may be either a mutual authentication in 
which both authenticate one another or a single 
directional authentication in which one authenticates 

25 the other, as will be described later. As the server 
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apparatus 30 responds to a request transmitted from the 
client apparatus 40 after performing predetermined 
processing, they function as the client and server 
system. The certificate management apparatus 10 issues 
5 the digital certificate used for the authentication, 

also, performs management, updating and so forth for the 
digital certificate, and thus acts as a CA such as that 
mentioned above . 

In the actual system, there may be a case 

10 where the server apparatus 30 also as a function of a 

client, or the client apparatus 40 also as a function of 
a server. Then there may be a case where the client 
apparatus functioning as a server transmits a request to 
the server apparatus functioning as a client. However, 

15 in such a case, operation should be performed as in a 
second embodiment described later. Therefore, in the 
description of the first embodiment, the apparatus 
acting as a server is referred to as the server 
apparatus while the apparatus acting as a client is 

20 referred to as the client apparatus. 

In this digital certificate management system, 
respective nodes, i.e., the certificate management 
apparatus 10, the server apparatus 30 and the client 
apparatus 40 can transmit 'request 7 which is a request 

25 for processing for a method of an application program 
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which is mounted in both, and then, can obtain 
'response' which is a result of the processing thus 
requested, through an RPC (remote procedure call) . 

In other words, the server apparatus 30 or the 
5 client apparatus 40 generates a request to the 

certificate management apparatus 10, transfers the same 
to the certificate management apparatus 10, and after 
that, obtains a response to the request. On the other 
hand, the certificate management apparatus 10 generates 

10 a request for the client and server system, transfer the 
same to the server apparatus 30, and obtains a response 
to the request. This request includes a request to 
cause the server apparatus 30 to transmit respective 
requests to the client apparatus 40, and then, to obtain 

15 responses to the requests from the client apparatus 40 
via the server apparatus 30. 

In order to achieve the RPC, well-known 
protocols, arts, or specification such as a SOAP (simple 
object access protocol), an HTTP (hyper text transfer 

20 protocol) , an FTP (file transfer protocol) , a COM 

(component object model), a CORBA (common object request 
broker architecture) or such may be utilized. 

FIGS. 3A and 3B illustrate a data 
transmission/reception model in this case. 

25 FIG. 3A shows a case where a request for the 
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client apparatus 40 occurs in the certificate management 
apparatus 10. In this case, the certificate management 
apparatus 10 generates a management apparatus request 
x a', and the client apparatus 40 which receives it via 
5 the server apparatus 30 returns a response 'a' to this 
request. In this case, not only the response a but also 
a response delay report a' are returned. This is 
because, in case where the client apparatus 40 having 
received the management apparatus request a determines 

10 that it cannot respond thereto immediately, it transmits 
the response delay report, once disconnects the 
connection, and then, returns a response to the above- 
mentioned request at a time of subsequent connection. 

There, since the server apparatus 30 itself 

15 cannot initially make a request for communication to the 
client apparatus 40, a request which the server 
apparatus 30 should transmit to the client apparatus 40 
should be transmitted as a response to a connection 
request previously made by the client apparatus 40 to 

20 the server apparatus 30. 

FIG. 3B shows a case where a request for the 
certificate management apparatus 10 occurs in the client 
apparatus 40. In this case, the client apparatus 40 
generates a client apparatus request b, and the 

25 certificate management apparatus 10 which has received 
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it via the server apparatus 30 returns a response b to 
the request, to the client 40. Also in this case, in 
case where a response cannot be returned immediately, a 
response delay report b' is returned first. 
5 A configuration and functions of each 

apparatus included in the digital certificate management 
system are described next. 

FIG. 1 shows a block diagram illustrating a . 
hardware configuration of the certificate management 

10 apparatus shown in FIG. 2. As shown, the certificate 
management apparatus 10 includes a CPU 11, a ROM 12, a 
RAM 13, an HDD 14 and a communication interface (I/F) 15, 
and these are connected together via a system bus 16. 
There, the CPU 11 executes various control programs 

15 stored in the ROM 12 or the HDD 14, controls operations 
of the certificate management apparatus 10, and thus, 
causes the certificate management apparatus 10 to act as 
respective parts such as a proof key updating unit, a 
configuration storage unit, an updating order control 

20 unit, a first transmitting unit, a second transmitting 
unit, and so forth. 

As a hardware of the certificate management 
apparatus 10, a well-known computer may be employed. In 
this case, various other necessary hardware may be added 

25 thereto appropriately. 
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The client apparatus and the server apparatus 
which form the client and server system may have various 
configurations depending on the general purpose thereof, 
such as those for remote management of various devices, 
5 electronic commerce or so. For example, in case of 

remote management, the server apparatus acts as not only 
an image processing apparatus such as a printer, a 
facsimile machine, a copier, a scanner, a digital 
composite machine, or such, but also another electronic 

10 apparatus such as a network home electric appliance, an 
automatic dispenser, a medical apparatus, a power source 
apparatus, an air conditioner, a measurement system for 
gas, water and electricity, or such, which acts as an 
apparatus to be managed, and the client apparatus acts 

15 as a management apparatus which collects information 

from the apparatus to be managed, and then transmits a 
command thereto and operates it. 

Each of the client apparatus and the server 
apparatus should include at least a CPU, a ROM, a RAM, a 

20 communication I/F needed for performing data 
transmission with external apparatuses via a 
communication network, and also, a storage device for 
storing information needed for performing the 
authentication processing. Then, as the CPU executes a 

25 control program stored in the ROM or such, the apparatus 
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is made to function as the client or the server in the 
client and server system. 

The above-mentioned communication may employ 
any medium such as a wired or wireless communication 
5 system, various communication circuits (communication 

paths) needed for establishing the communication network. 
The same medium may also be applied for communication 
with the certificate management apparatus 10. 

FIG. 2 illustrates functional configurations 
10 of the respective apparatuses in the first embodiment. 

First, the certificate management apparatus 10 
includes a proof key creation part 21, a certificate 
issuance part 22, a certificate management part 23, a 
certificate updating part 24, a communication function 
15 part 25, a configuration storage part 26 and an updating 
order control part 27. 

The proof key creation part 21 has a function 
of creating a root private key which is a proof private 
key used for producing a. digital certificate, and a root 
20 key which is a proof public key (proof key) 

corresponding to the root private key for proving 
validity of a digital certificate. 

The certificate issuance part 22 has a 
function of attaching a digital signature to a client 
25 public key and a server public key which are information 
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used for the authentication processing between the 
server apparatus 30 and the client apparatus 40 and thus 
issuing a client public key certificate and a server 
public key certificate, respectively, which are the 
5 digital certificates. Also, the certificate issuance 
part 22 has functions of producing the client key 
certificate, the client private key, the server public 
key and the server private key, and producing a root key 
certificate which is the digital certificate in which a 

10 digital signature is attached to the root key. 

The certificate management part 23 has a 
function of managing the digital certificates issued by 
the certificate issuance part 22, the root private key 
used for producing them, and the root key corresponding 

15 to the root private key. The certificate management 

part 23 stores these certificates and keys together with 
information such as validity dates, issuance 
destinations, IDs, necessity of updating thereof and so 
forth. 

20 The certificate updating part 24 has a 

function of, upon updating the root key, causing the 
proof key creation part 21 to create a new root private 
key and a corresponding new root key for each of valid 
root private keys, and updating them. Further, the 

25 certificate updating part 24 has functions of, upon 
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updating, causing the certificate issuance part 22 to 
issue a new client public key certificate, a new server 
public key certificate and a new root key certificate 
with digital signatures attached thereto with the use of 
5 the new root private key, respectively, causing the 

communication function part 25 to transmit them to the 
server apparatus 30 and the client apparatus 40 , and 
then, causing the server apparatus 30 and the client 
apparatus 40 to update them. Furthermore, a procedure 

10 of respective processing needed for updating and 

management of progress thereof are performed by the 
updating control part 27, as will be described later. 

The communication function part 25 has a 
function of performing data transmission with external 

15 apparatuses via the network, thus transmitting necessary 
information to the server apparatus 30 and to the client 
apparatus 40 according to instructions given by the 
certificate management part 23, or transferring received 
data to the certificate updating part 24. 

20 The configuration storage part 26 has a 

function of storing, for the respective nodes (i.e., the 
server apparatus 30 and the client apparatus 40, in this 
case) included in the client and server system for which 
the certificate management apparatus 10 performs 

25 management of digital certificates, information of 
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communication counterparts of the respective nodes, and 
information as to whether each of the respective nodes 
act as a client or a server with the communication 
counterpart thereof. Furthermore, the configuration 
5 storage part 26 also stores the private keys and the 
public key certificates used for mutual authentication 
by the respective nodes, IDs of the root key 
certificates, or information indicating updating states 
for the keys or the certificates, as the necessity 
10 arises. 

The updating order control part 27 has a 
function of, when necessity of updating occurs for the 
root key, determining a procedure of updating the keys 
or the certificates performed by the certificate 

15 updating part 24 based on information stored by the 

configuration storage part 26, causing the certificate 
updating part 24 to perform the updating operation, and 
also, to control it. 

The functions of the respective parts are 

20 achieved as a result of required control programs being 
executed by the CPU 11 shown in FIG. 1, and thereby, the 
CPU 11 controlling the operations of the respective 
parts of the certificate management apparatus 10. 

The server apparatus 30 has a certificate 

25 storage part 31, a communication function part 32 and a 
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server function part 33. 

The certificate storage part 31 has a function 
of storing a key used for authentication processing 
according to SSL, and, for example, when mutual 
5 authentication is performed, it stores the root key 
certificate, the server private key and the server 
public key certificate. 

The communication function part 32 has a 
function of performing data transmission with external 

10 apparatuses via the network, and thus, it transfers 
received data to the server function part 33, or 
transmits data to an external apparatus according to 
instructions of the server function part 33. 

The server function part 33 performs 

15 predetermined processing in response to a request 

received from the client apparatus 40, and returns a 
response to the client apparatus 40. Further, as will 
be described later, the server function part 33 performs 
predetermined processing in response to a request such 

20 as that for certificate updating received from the 
certificate management apparatus 10 and returns a 
response thereto. 

The functions of the respective parts are 
achieved as a result of the CPU of the server apparatus 

25 30 executing a required control program, and controlling 



-88- 



operations of the respective parts . 

The client apparatus 40 includes a certificate 
storage part 41, a communication function part 42, and a 
client function part 42. 
5 The certificate storage part 41 has a function 

of storing a key used for performing authentication 
processing according to SSL, and, for example, it stores 
the root key certificate, the client private key and the 
client public key certificate when mutual authentication 

10 is performed. 

The connection function part 42 has a function 
of performing data transmission external apparatuses via 
the network, and, it transfers received data to the 
client function part 43, or transmits data to an 

15 external apparatus according to instructions given by 
the client function part 43. 

The client function part 43 functions as a 
client by transmitting a required request to the server 
apparatus 30 in response to instructions input by a user, 

20 a state change detected by a sensor (not shown) , or 

elapse of a predetermined time interval measured by a 
timer (not shown) regarding it as a trigger, and, after 
receiving a response thereto from the server apparatus 
30, performing processing according to the contents of 

25 the response received from the server apparatus 30. 
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Furthermore , as will be described later, when receiving 
a request for certificate updating or such from the 
certificate management apparatus 10 in a form of a 
response, the client function part 43 performs required 
5 processing and thus responds thereto. 

The functions, of the respective parts are 
achieved by the CPU of the client apparatus 40, as a 
result of it executing a required control program, and 
controlling operations of the respective parts. 

10 In this digital certificate management system, 

the certificate management apparatus 10 can perform data 
transmission directly only with the server apparatus 30 
in the client and server system, and a request which 
should be transmitted to the client apparatus 40 from 

15 the certificate management apparatus 10 is transmitted 
to the client apparatus 40 via the server apparatus 30 
actually. Also, a response from the client apparatus 40 
to the certificate management apparatus 10 is 
transmitted via the server apparatus 30 in the same way. 

20 Further, in the server apparatus 30 and the 

client apparatus 40, initial root keys are stored at 
least before a user starts operation of authentication, 
i.e., at a time of shipment from a manufacturer's 
factory, or such. At this time, it is preferable that 

25 public key certificates and private keys are also stored 
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there . 

Next, root key updating processing performing 
in the digital certificate management system described 
above with reference to FIG. 2, and a configuration 
5 needed therefor, are described. 

Although not shown in sequence diagram which 
will be described, before communication are established 
between the server apparatus 30 and the client apparatus 
40, authentication processing according to SSL is 

10 performed and data transfer is permitted therebetween 
only through a communication path secured by the SSL 
after the authentication results in success. It is 
advantageous in this system that root key certificate 
updating processing can be performed without affecting 

15 this authentication processing. Authentication needed 

for the updating is performed with the use of a root key 
or a public key certificate which are stored at the time 
when the authentication is just performed. In other 
words, before the updating, those stored before updating 

20 are used, while, after the updating, those after being 
updated are used for the authentication. The same 
manner is also applied to other embodiments which will 
be described subsequently. 

Furthermore, communication between the 

25 certificate management apparatus 10 and the server 
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apparatus 30 is performed via a communication path for 
which safety is secured (in which none of data tamper, 
wiretapping or such occurs), such as a direct line, or 
such , is used . 

5 First, a communication procedure in case where 

the authentication processing with the use of SSL 
described above is next described. As this 
authentication processing, either mutual authentication 
in which both authenticate one another or single 

10 directional authentication in which one authenticates 
the other may be applied. In each embodiment of the 
present invention, either one may be applied. First, 
description is next made for mutual authentication. 

FIG. 4 shows a flow chart of processing 

15 executed in each apparatus when mutual authentication 
according to SSL is performed between the client 
apparatus and the server apparatus, together with 
information used in the processing. 

As shown, when authentication according to SSL 

20 is performed, first, a root key certificate, a client 

private key and a client public key certificate (client 
certificate) are stored in the client apparatus 40. The 
client private key is a private key issued by the 
certificate management apparatus 10 for the client 

25 apparatus 40. The client public key certificate is a 
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digital certificate obtained as a result of a digital 
signature being attached to a public key corresponding 
to the client private key by the certificate management 
apparatus 10. The root key certificate is a digital 
5 certificate obtained as a result of a root key, which is 
a proof public key (referred to as a 'proof key', 
hereinafter) corresponding to a root private key which 
is a proof private key used for the signature by the 
certificate management apparatus 10, having a digital 

10 signature being attached thereto by the certificate 
management apparatus 10. 

In the server apparatus 30, a root key 
certificate, a server private key certificate and a 
server public key certificate (server certificate) are 

15 stored. The server private key and the server public 
key certificate are a private key and a public key 
certificate, respectively, issued by the certificate 
management apparatus 10 for the server apparatus 30. 
There, the same certificate management apparatus 10 

20 issues certificates for the client apparatus 40 and for 
the server apparatus 30 with the use of the same root 
private key. Accordingly, the root key certificate is 
common between the client apparatus 40 and the server 
apparatus 30 . 

25 Relationships between respective keys and 
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certificates are those described above in the 
description of the related art with reference to FIGS. 
53A and 53B. 

In FIG. 4, each arrow indicated between two 
5 flow charts means data transfer processing. A 

transmission end performs transfer processing in a step 
at the root of the arrow, while a reception end performs 
processing in . a step at the tip of the arrow. When 
processing in each step is not completed normally, the 

10 authentication is repeated and the processing is stopped. 
The same manner is applied also when authentication 
failure is reported from a communication counterpart, 
when time out occurs in the processing, or such. 

In order to make request for communication to 

15 the server apparatus 30, the CPU in the client apparatus 
40 executes a required control program, and thus, starts 
processing according to the flow chart shown at the left 
in FIG. 4. Then, in Step Sll, it transmits a connection 
request to the server apparatus. 

20 The CPU in the server apparatus 30 executes a 

required control program when receiving the connection 
request, and thus, starts processing according to the 
flow chart at the right in FIG. 4. Then, in Step S21, 
it generates a first random number and encodes it with 

25 the use of the server private key. Then, in Step S22, 
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the encoded first random number and the server public 
key certificate are transmitted to the client apparatus 
40. 

In the client apparatus 40 , when receiving it, 
5 validity of the server pubic key certificate is examined 
with the use of the root key certificate in Step S12. 
This processing includes not only examination as to 
whether or not it has been subject to damage or tamper 
but also examination as whether or not the server 

10 apparatus 30 is a proper communication counterpart with 
the use of the bibliographic information. 

Then, after thus proving the validity of the 
server public key certificate, the first random number 
is decoded with the use of the server public key 

15 included in the server public key certificate in Step 
S13. When the decoding is completed in success, it is 
proved that the first random number is positively one 
received from the server apparatus 30 for which the 
server public key certificate was properly issued by CA. 

20 Also, the server apparatus 30 is thus authenticated as 
being a proper communication counterpart. 

After that, in Step S14, second and third 
random numbers are generated separately. Then, in Step 
S15, the second random number is encoded with the use of 

25 the client private key, the third random number is 
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encoded with the use of the server public key, and, in 
Step S16, they are transmitted to the server apparatus 
30 together with the client public key certificate. 
Encoding of the third random number is performed for the 
5 purpose of avoiding leakage of the random number to any 
apparatus other than the server apparatus 30. 

When receiving them, the server apparatus 30 
uses the root key certificate and thus examines validity 
of the client public key certificate- with the use of the 

10 root key certificate in Step S23. This processing also 
includes, as in Step S12, examination as to whether or 
not the client apparatus 40 is a proper communication 
counterpart. After they are validated, in Step S24, the 
second random number is decoded with the use of the 

15 client public key included in the client public key 

certificate. When the decoding is completed in success, 
it can be proved that the second random number is 
positively one received from the client apparatus 40 for 
which the client public key certificate was properly 

20 issued by CA. Also, the client apparatus 40 is proved 
as being a proper communication counterpart. 

After that, in Step S25, with the use of the 
server private key, the third random number is decoded. 
Through the processing performed until then, the first 

25 through third random numbers are shared between the 
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server and the client. At least the third random number 
is not known by any apparatuses other than the client 
apparatus 40 which created it and the server apparatus 
30 which has the server private key. When the 
5 processing results in success until then, a response 

indicating that the authentication results in success is 
returned to the client apparatus 40 in Step S26. 

In the client apparatus 40, after receiving it, 
in Step S17, a common key is generated from the first 

10 through third random numbers, and will be used for 
encoding data performed subsequently, and thus, the 
authentication processing is finished. In the server 
apparatus 30, the same processing is performed in Step 
S27, and the processing is finished. Thus, 

15 communication is established therebetween through the 
processing described above, and after that, data is 
encoded according to a common key encoding manner with 
the use of the common key thus generated in Steps S17 or 
S27 . 

20 Through the processing, the common key can be 

exchanged safely after the client apparatus 40 and the 
server apparatus 30 authenticate one another, and thus, 
it is possible to perform data transmission with the 
proper counterpart safely. 

25 In a case of the single directional 
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authentication , the processing shown in FIG. 4 can be 
simplified into that shown in FIG. 5. Specifically, in 
this case, processing in which the second random number 
is encoded with the use of the client private key, and 
5 the public key certificate A is transmitted to the 

communication apparatus B is not indispensable. In this 
case, Steps S23 and S24 in the server apparatus 30 are 
not needed. In this case, although the server apparatus 
30 cannot authenticate the client apparatus 40, the 

10 processing does well in a system in which it is only 

necessary that the client apparatus 40 can authenticate 
the server apparatus 30. 

Also in this case, the information which 
should be stored in the client apparatus 40 is only the 

15 root key certificate, and the client private key and the 
client public key certificate are not necessary to be 
stored. Furthermore, in this case, it is not necessary 
to store the root key certificate in the server 
apparatus 30. Accordingly, in this case, updating of 

20 each root key certificate which will be described later 
can be simplified into processing of updating only the 
root key certificate in the client apparatus 40 and the 
server public key certificate in the server apparatus 30. 
Next, description of root key certificate 

25 updating processing is started. In the root key 
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updating processing according to the first embodiment of 
the present invention, processing illustrated in 
sequence diagrams shown in FIGS. 6 through 12 is 
executed in the order shown in a flow chart shown in FIG. 
5 13. Accordingly, first, the processing in FIGS. 6 
through 12 will be described, and after that, the 
execution order thereof will be described with reference 
to FIG. 13. Processing illustrated in each figure is 
performed by the CPU of each of the certificate 

10 management apparatus 10, the server apparatus 30 and the 
client apparatus 40 as a result of a required control 
program being executed by the CPU. 

Processing S, i.e., root key certificate 
certain processing is described next with reference to 

15 FIG. 6. 

In this processing, the certificate management 
apparatus 10 creates a pair of new root private key and 
root key in Step S101 for a valid root private key. The 
A valid' root private key means that this key is 

20 currently used for authentication in the client and 

server system. More exactly, a certificate in which a 
digital signature is attached with the use of this root 
private key is stored in the server apparatus 30 or in 
the client apparatus 40 in a state in which it is usable 

25 for authentication currently.. It is possible to 
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determine whether or not any private key created in the 
past is valid, based on information such as validity 
dates of the public key certificate and the root key 
certificate, whether or not updating thereof has been 
5 made, or such, stored in the certificate management part 
23, IDs of the public key certificates and the root key 
certificates used by the respective nodes, stored in the 
configuration storage part 26, identification 
information for the root private key used for a digital 

10 signature included in these certificates, or such. The 
key which should be replaced by a new key is referred to 
as an 'old' key, hereinafter. The same manner is 
applied also for a 'certificate'. 

In Step S102, a digital signature is attached 

15 to the new root key created in Step S101 with the use of 
the old root private key, and thus, a root key 
certificate to be distributed which is a first proof key 
certificate is created. 

Processing 1, i.e., root key certificate 

20 storage processing in the server apparatus is described 
next with reference to FIG. 7. 

In this processing, first in Step Sill, the 
certificate management apparatus 10 transmits, to the 
server apparatus 30, the root key certificate to be 

25 distributed created in Step S102 in FIG. 6, together 
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with an updating request therefor. In this processing, 
the CPU 11 in the certificate management apparatus acts 
as a second transmitting unit. 

When receiving this request, the server 
5 apparatus 30 examines validity of the root key 

certificate to be distributed with the use of the old 
root key certificate in Step S112. As described above, 
the digital signature is attached to the root key 
certificate to be distributed with the use of the old 

10 root private key. Accordingly, the contents thereof can 
be decoded with the old root key, and it can be proved 
that the it is positively issued by the certificate 
management apparatus 10 originally. Further, in this 
case, as described above in the description of the 

15 background art with reference to FIGS. 53A and 53B, it 

is possible to also prove that the root key has not been 
subject to any damage or tamper. Accordingly, by using 
this root key to be distributed, it is possible to prove 
validity of the root key thus received without needing 

2 0 any human operation. 

After it is validated, in Step S113, the root 
key certificate to be distributed is stored in the 
certificate storage part 31. At this time, the old root 
key certificate is not deleted. Accordingly, in the 

25 certificate storage part 31, the two root key 
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certificates are stored. 

When authentication processing is to be 
performed in this state, for proving validity of the 
received public key certificate, validating is tried 
5 with the use of these two (old and new) root key 

certificates alternately, and, when validating results 
in success with the use of any of these root key 
certificates, it is determined that the validity is 
proved. Accordingly, validity can be proved for the 

10 digital certificate for which either the old or the new 
root private key was used for the digital signature. 
Validating as to whether or not the root key has been 
subject to any damage or tamper performed when the root 
key certificate to be distributed is used in the 

15 authentication can be achieved with the use of the old 

root key certificate. In these Steps S112 and S113, the 
CPU in the server apparatus 30 acts as a second server 
updating unit. 

After that, the server apparatus 30 returns a 

20 result report to the certificate management apparatus 10 
in response to the updating request in Step S114. Then, 
when storage of the root key certificate to be 
distributed has been completed in success, this matter 
is reported. If it is failed by some cause, this matter 

25 is reported instead. This result report includes at 
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least information indicating that the server apparatus 
30 has received the root key certificate to be 
distributed. Each result report mentioned later also 
has the same meaning. 
5 Next, processing 2, i.e., root key certificate 

storage processing in the client apparatus is described 
with reference to the sequence diagram shown in FIG. 8. 

In this processing., first, in Step S121, the 
certificate management apparatus 10 transmits, to the 

10 server apparatus 30, the root key certificate to be 

distributed created in Step S102, as well as an updating 
request transmission request requesting the server 
apparatus 30 to transmit an updating request therefor. 
In response thereto, the server apparatus 30 transmits, 

15 to the client apparatus 40, the root key certificate to 
be distributed as well as the updating request therefor. 
However, it is not possible that a transmission request 
is made from the server apparatus 30 initially. 
Accordingly, the client apparatus 40 is made to transmit 

20 a communication request periodically to the server 

apparatus 30 at predetermined timing in Step S122, and, 
in response thereto, the root key certificate to be 
distributed and the updating request therefor are 
transmitted thereto in Step S123. 

25 it is preferable that the communication 
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request sent to the server apparatus 30 from the client 
apparatus 40 as mentioned above may be made as an HTTP 
request, and then, a request or data sent to the client 
apparatus 40 from the server apparatus 30 may be made as 
5 an HTTP response in response thereto. Thereby, even 
when the client apparatus 40 is installed within a 
firewall, it is possible that data is transferred from 
the server apparatus 30 to the client apparatus 40 
beyond the firewall. 

10 However, a means for transmitting beyond a 

firewall is not limited thereto. For example, with the 
use of an SMTP (simple mail transfer protocol) , an 
electronic mail having a request or data to be 
transmitted attached thereto may be transmitted actually. 

15 However, HTTP is superior in terms of reliability. 

Through the above-described processing, the 
root key certificate to be distributed and the updating 
request are transmitted to the client apparatus 40 from 
the certificate management apparatus 10, and, in 

20 processing in Step S121, the CPU 11 in the certificate 
management apparatus 10 acts as a first transmitting 
unit . 

After receiving this request, the client 
apparatus 40 validates the root key certificate to be 
25 distributed with the use of the old root key certificate 
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in Step S124. Then, when the validation results in 
success, in Step S125, the root key certificate to be 
distributed is stored in the certificate storage part 41 
At this time, the old root key certificate is not 
5 deleted. As to details of the validation and storage, 

they are the same as those in Steps S112 and S113 in FIG 
7, and, in these steps, the CPU in the client apparatus 
40 acts as a second client updating, unit.. 

After that, the client apparatus 40 returns a 

10 result report to the certificate management apparatus 10 
in Step S126 as a response to the updating request. 
However, this report is actually first transmitted to 
the server apparatus 30, and then the server apparatus 
30 transmits it to the certificate management apparatus 

15 10 in Step S127 acting as an intermediary. 

Next, processing 3, i.e., public key 
certificate storage processing in the client apparatus 
is described with reference to FIG. 9. 

In this processing, first, in Step S131, the 

20 certificate management apparatus 10 creates a new client 
public key certificate by attaching, with the new root 
private key, a digital signature to the client public 
key already issued for the client apparatus. Since the 
client private key has not been updated yet, it is not 

25 necessary to update the client public key itself. 
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Then, in Step S132, the certificate management 
apparatus 10 transmits to the server apparatus 30, the 
new client public key certificate created in Step S131, 
together with an updating request transmission request 
5 requesting the server apparatus 30 to transmit an 

updating request therefor to the client apparatus 40. 
In response thereto, as in Steps S122 and S123 in FIG. 8, 
the server apparatus 30 transmits the new client public 
key certificate and the updating request therefor to the 

10 client apparatus 40, as a response to a communication 
request (Step S133) sent from the client apparatus 40, 
in Step S134. 

Through the above-described processing , the 
new client key certificate and the updating request 

15 therefor are transmitted to the client apparatus 40 from 
the certificate management apparatus 10 via the server 
apparatus 30. In Step S132, the CPU 11 in the 
certificate management apparatus 10 acts as a first 
transmitting unit . 

20 In response thereto , in Step S135 , the client 

apparatus 40 uses the root key certificate to be 
distributed stored in Step S125 for validating the new 
client public key certificate. As described above, the 
digital signature is attached to the new client public 

25 key certificate with the use of the new private key, and 



-106- 



as a result, with the use of the new root key included 
in the root key certificate to be distributed, the 
contents of the new client public key certificate can be 
decoded and can be provided as positively having been 
5 issued for the client apparatus 40 by the certificate 

management apparatus 10. If it is proved, in Step S136, 
the new client public key certificate is stored in the 
certificate storage part 41. In these Steps S135 and 
S136, the CPU in the client apparatus 40 acts as a first 

10 client updating unit. 

At this time, the old client public key 
certificate is not deleted. Accordingly, the two (old 
and new) client public keys are stored in the 
certificate storage part 41. then, when authentication 

15 processing is performed in this state and the public key 
certificate is transmitted to the communication 
counterpart, the new public key certificate is 
transmitted first . 

In this case, when the communication 

20 counterpart stores the new root key already (as the root 
key certificate to be distributed or the new root key 
certificate described above) , the communication 
counterpart can decode the digital signature of the new 
public key certificate therewith, and thus, 

25 authentication can be made without problem. On the 
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other hand, when the communication counterpart has not 
stored the new root key, it cannot decode the digital 
signature of the new public key certificate, and thus, a 
response indicating that authentication has been failed 
5 is issued therefrom. However, even in such a case, by 
requesting communication again and transmitting the old 
public key certificate at this time, the digital 
signature thereof can be decoded with the use of the old 
root key, and thus, authentication can be made without 

10 problem finally. 

Accordingly, by storing the two public key 
certificates, authentication can be made in the 
communication counterpart even when the communication 
counterpart has not stored the new root key, although 

15 somewhat extra overhead may be required therefor. Since 
the public key bodies themselves included in these two 
public key certificates are same as one another, 
decoding of the data encoded with the use of the client 
private key can be performed with the use of either one 

20 of these public key certificates in the same way. 

After that, the client apparatus 40 returns a 
result report in response to the updating request to the 
certificate management apparatus 10 in Step S137, this 
is then once transmitted to the server apparatus 10 and 

25 then is transmitted to the certificate management 
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apparatus 10 from the server apparatus 10, actually. 

Next, processing 4, i.e., public key 
certificate storage processing in the server apparatus 
is described with reference to FIG. 10. 
5 In this processing, first, in Step S141, the 

certificate management apparatus 10 creates a new server 
public key certificate by attaching with the use of the 
new private key a digital signature to the server public 
key already issued for the client apparatus 40. The 

10 server public key itself should not be updated as in the 
case for the client public key described above. 

Then, in Step S142, the certificate management 
apparatus 10 transmits to the server apparatus 30 the 
new public key certificate together with an updating 

15 request therefor. In this processing, the CPU 11 in the 
certificate management apparatus 10 acts as a second 
transmitting unit . 

When receiving this request, the server 
apparatus 30 validates the new public key certificate 

20 with the use of the root key certificate to be 

distributed stored in Step S113 in FIG. 7 as in Step 
S135 in FIG. 9. When the validation is finished in 
success, the new server public key certificate is stored 
in the certificate storage part 31 in Step S144, and is 

25 used to replace the old server public key certificate. 



-109- 

In Steps S143 and S144, the CPU in the server apparatus 
30 acts as a server updating unit. 

In the case of the server apparatus 30, 
different from the case of the client apparatus 40, the 
5 new public key certificate is not additionally stored 
with the old one but is used to replace the old one. 
The reason therefor is described next. 

In the case of the server apparatus 30, the 
public key certificate is transmitted to the client 

10 apparatus 40 upon receiving a connection request made by 
the client apparatus 40. If a plurality of server 
public key certificates were stored in this case, it 
should be necessary to select either one thereof to be 
transmitted. Then, if the client apparatus 40 received 

15 the server public key certificate by which a digital 
certificate cannot be decoded as a result, 
authentication would be failed in. For example, such a 
problem would occur in a case where the new server 
public key certificate were transmitted before the 

20 client apparatus 40 had not stored the new root key. 

This problem might be solved by transmitting 
the other server public key certificate after the 
authentication were thus failed in. However, in case 
where the server apparatus received connection requests 

25 from unspecified many client apparatuses at any timing, 
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it would not be practical to select the server public 
key certificate to be transmitted for each of these 
client apparatuses one by one. Furthermore, since the 
server apparatus could not know what situation each 
5 client apparatus were in until the authentication were 
finished, it would be also difficult to appropriately 
select the server public key certificate to be 
transmitted first. This is why it is necessary that the 
server apparatus stores only one server public key 

10 certificate, and then, it is always transmitted when 

receiving a connection request from the client apparatus. 

Accordingly, in the server apparatus 30, the 
old server public key certificate is deleted at the time 
when the new server public key certificate is stored. 

15 Therefore, if this is performed before the new root key 
is stored in the client apparatus 40, the client 
apparatus 40 cannot decode a digital signature of the 
server public key certificate received, and thus, cannot 
perform authentication. In order to avoid such a 

20 problem, the public key storage processing in the server 
apparatus 30 should be performed after it is confirmed 
that the root key storage processing is completed in the 
client apparatus 40. 

After Step S144 described above, the server 

25 apparatus 30 returns a result report to the certificate 
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management apparatus 10 as a response to the updating 
request in Step S145. There, when storage of the new 
server public key certificate has succeeded, this matter 
is reported, while, when it has been failed in due to 
5 some cause, this matter is reported instead. 

Next, processing 5, i.e., root key certificate 
updating processing in the server apparatus is described. 

In this processing, first, in Step S151, the 
certificate management apparatus 10 creates a new root 

10 key certificate as a second proof key certificate by 
attaching a digital signature with the use of the new 
root private key to the new root key. In Step S152, the 
certificate management apparatus 10 transmits to the 
server apparatus 30 the new root key certificate as well 

15 as an updating request therefor. Also in this 

processing, the CPU 11 in the certificate management 
apparatus 10 acts as a second transmitting unit. 

When receiving the request, the server 
apparatus 30 validates the new root key certificate with 

20 the use of the root key certificate to be distributed in 
Step S153. As described above, since the new root key 
certificate has the digital signature attached thereto 
with the use of the new root private key, the contents 
thereof can be decoded with the use of the new root key 

25 included in the root key certificate to be distributed, 
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and thus, the new root key certificate can be validated 
as positively being one issued by the certificate 
management apparatus 10. 

After the validation is finished, the new root 
5 key certificate is stored in the certificate storage 

part 31 in Step S154. Then, the root key certificate to 
be distributed and the old root key certificate are 
deleted and thus discarded. And thus, the root key 
certificate is updated. Thereby, it becomes not 

10 possible to decode a digital certificate having a 

digital signature attached thereto with the use of the 
old root private key. However, when the actual updating 
processing is performed after the new client public 
certificate is stored in the client apparatus 40, there 

15 occurs no problem for validating the public certificate 
sent from the client apparatus 40 at this time. Thus, 
no problem occurs for performing authentication 
processing there. 

After that, the server apparatus 30 returns a 

20 result report to the certificate management apparatus 10 
as a response to the updating request in Step S155. 
There, when storage of the new root key certificate has 
been succeeded in, this mater is reported, while, when 
it is failed in due to some cause, this matter is 

25 reported instead. 
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Next, processing 6, i.e., root key certificate 
updating processing in the client apparatus is described. 

In this processing, in Step S161, the 
certificate management apparatus 10 creates a new root 
5 key certificate as a second proof key certificate by 
attaching a digital signature with the use of the new 
root private key to the new root key. Since this is the 
same as that created in Step S151, the one created in 
Step S151 may be also used for Step S161. Similarly, it 

10 is also possible that the one created in Step S161 is 
also used for Step S151. 

Then, in Step S162, the certificate management 
apparatus 10 transmits to the server apparatus 30 the 
new root key certificate created in Step S161 as well as 

15 an updating request transmission request requesting the 
client apparatus 40 to transmit an updating request 
therefor. The server apparatus 30 responds thereto and, 
as in Steps S122 and S123 in FIG. 8, transmits the new 
root key certificate as well as the updating request 

20 therefor as a response to a communication request (Step 
S163) made by the client apparatus 40 first. 

Through the above-described processing, the 
new root key certificate as well as the updating request 
therefor are transmitted to the client apparatus 40 from 

25 the certificate management apparatus 10 via the server 
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apparatus 30. Also in Step S162, the CPU 11 in the 
certificate management apparatus 10 acts as the first 
transmitting unit. 

When receiving this request, the client 
5 apparatus 40 validates the new root key certificate with 
the use of the root key certificate to be distributed in 
Step S165. After the validation is finished, the new 
root key certificate is stored in the certificate 
storage part 41 in Step S166. Then, the root key 

10 certificate to be distributed and the old root key 

certificate are deleted and discarded. And thus, the 
root key certificate is updated to the new one. This 
processing is same as that in Steps S153 and S154 in FIG. 
11. However, when storage of the new client public key 

15 certificate in the client apparatus 40 is finished, the 
old client public key certificate may also be discarded 
in Step S166 at the same time. 

After that, the client apparatus 40 returns a 
result report to the certificate management apparatus 10 

20 as a response to the updating request in Step S167. 

However, the result report is actually first transmitted 
to the server apparatus 30, and then, is transmitted to 
the certificate management apparatus from the server 
apparatus 30 acting as an intermediary. 

25 Execution timing of the respective processing 
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illustrated in FIGS. 6 through 12 is managed with the 
use of an updating procedure based on information stored 
in the configuration storage part 26 by the updating 
control part 27 in the certificate management apparatus 
5 10. This updating procedure is such as that shown in a 
flow chart shown in FIG. 13. That is, when a 
predetermined trigger for updating a root key is 
detected, processing shown in FIG. 13 is started, and 
then, first, the processing S shown in FIG. 6 is 

10 executed . After that, the processing 1 through 6 is 
executed. As the trigger for updating a root key, 
expiration of a predetermined validity due term, 
instructions by a manager, or such, may be applied. As 
a case where a manager gives instructions, a case where 

15 it is determined that a root private key has leaked to a 
third person or such, may be assumed, for example. 

Furthermore, in FIG. 13, processing located at 
a tip of an arrow is started after processing located. at 
a root of the same arrow is completed. An arrow 

20 indicated by a broken line indicates that a relevant 
condition is not indispensable but is preferably 
considered 

Specifically, the processing 1 and the 
processing 2 are started after the processing S is 
25 finished. The processing 3 is started after the 
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completion of the processing 2, and also, preferably 
after the completion of the processing 1. The 
processing 4 is started after the completion of the 
processing 1 and the processing 2. The processing 5 is 
5 started after the processing 1 and the processing 3 are 
finished. The processing 6 is started after the 
processing 2 and the processing 4 are finished. The 
completion of the processing 3 through the processing 6 
means that updating of the root key and the public key 

10 certificate is finished. 

Each processing is regarded as being completed 
when a response indicating updating success is received 
in response to a relevant updating request. This 
response includes information indicating that a 

15 certificate to be updated has been received, as 

mentioned above. In case where a response indicating 
failure in updating or a case where time out occurs in 
processing first, the same processing, should be repeated 
again. However, in case where failure occurs 

20 successively predetermined times, it should be 

determined that the entire updating processing is failed 
in . 

Furthermore, as shown in FIG. 7 or such, in 
case where the certificate management apparatus 10 
25 transmits the updating request to the server apparatus 
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30, the server apparatus 30 returns a result report 
after completing storage of the received certificate or 
such. However, it is also possible, as shown in FIG. 14, 
that the server apparatus 30 immediately returns a 
5 reception response when receiving the updating request 
(Step Sill'). In this case, the reception response in 
Step Sill' always means that. the updating request and 
the root key certificate to be distributed transmitted 
from the certificate management apparatus 10 have been 

10 property received. Furthermore, a result report in Step 
S114 may become information informing of success/failure 
of updating, a cause of the failure, or such. 
Furthermore, it is preferable that the certificate 
management apparatus 10 returns a response further to 

15 this result report (in Step S114'). Thereby, the server 
30 can also recognize that the result report has been 
properly received by the certificate management 
apparatus 10. 

Furthermore, the same procedure manner is 

20 applied for communication between the server apparatus 

30 and the client apparatus 40. That is, when receiving 
any request, a reception request is returned to a 
transmission source immediately. Similarly, when a 
result report is received, a reception response thereto 

25 is returned immediately. FIG. 15 shows a sequence 
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adding this concept to the sequence shown in FIG. 8. 

A reception response in Step S123' is 
information indicating that the client apparatus 40 has 
received the root key certificate to be distributed and 
5 the updating request. However, when simply adding the 
above-mentioned concept to the sequence shown in FIG. 8, 
this information is not sent to the certificate 
management apparatus 10 until the server apparatus 30 
sends a result report in Step S127. 

10 Therefore, as shown by a broken line in FIG. 

15, after receiving a reception response from the client 
apparatus 40, the server apparatus 30 may transmit a 
transmission result report only indicating whether or 
not the transmission has been succeeded in or failed in 

15 to the certificate management apparatus 10. Thereby, it 
becomes possible to immediately report to the 
certificate management apparatus 10 that the 
transmission to the client apparatus 40 has been 
succeeded in or failed in. 

20 Furthermore, in case where a result report is 

sent as mentioned above, it is also possible to proceed 
with processing, presuming that storage or setting of 
the certificate is performed without delay, only when a 
reception response is made from a transmission 

25 destination of the certificate or such, in an execution 
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timing management for the respective processing 
described above with reference to FIG. 13. Specifically, 
even before the processing 1 is finished actually, it is 
presumed that the processing 1 is finished when a 
5 reception response such as that in Step Sill' of FIG. 14 
is made, and then, a timing at which the processing 4 is 
started may be determined only based on the presumption. 
Furthermore, even before the processing 2 is finished 
yet actually, when a transmission result report such as 
10 that shown as Step SA in FIG. 15 is returned, it may be 
presumed that the processing 2 is finished, and based 
thereon, a timing of starting the processing 4 may be 
determined . 

FIGS. 14 and 15 illustrate variant examples of 
15 only the sequences shown in FIGS. 7 and 8. However, the 
above-described concept may also be applied to all the 
processing and sequences in embodiments and variant 
embodiments according to the present invention which 
will be described subsequently. 
20 In a case where the root key updating 

processing is performed according to the procedure shown 
in FIG. 13 based on the above-described timing 
management, the server apparatus 30 and the client 
apparatus 40 can perform authentication processing 
25 according to SSL at any timing in the processing. 
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Thereby, even when the updating processing is stopped on 
the way for some reason, no significant problem occurs 
in communication between the server apparatus 30 and the 
client apparatus 40. Accordingly, there occur no 
5 significant problem even when a time is required to seek 
a cause of a trouble in the updating processing if any, 
and the updating processing is started again after the 
cause of the trouble is removed. The same manner may 
also be applied to the respective embodiments according 

10 to the present invention described subsequently. 

In this digital certificate management system, 
by execution of the root key updating processing in such 
a procedure, the root key can be updated under automatic 
control without affecting authentication processing 

15 itself between the server apparatus 30 and the client 
apparatus 40, as described above. Furthermore, the 
communication path is secured with the use of SSL 
through the authentication with the use of old (before 
being updated) root key or public key certificate," and 

20 then, the new root key or the new public key certificate 
used for updating can be transmitted therethrough. 
Furthermore, after the updating, it is possible to 
create a state in which the communication path according 
to SSL can be secured through the authentication with 

25 the use of the new root key or the new public key 
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certificate thus obtained through the updating. Thus, 
by applying such a digital certificate management system, 
without needing a special communication path for 
updating the root key, the root key can be updated. 
5 Accordingly, it is possible to establish a client and 

server system which performs authentication according to 
SSL upon performing data transmission, at low costs. 
The same advantage can be obtained also from the 
respective embodiments described subsequently. 

10 Furthermore, although it is necessary to 

separately provide the safe communication path between 
the certificate management apparatus 10 and the server 
apparatus 30, this communication path may be a common 
one which can also be used for the regular communication 

15 processing such as that for updating of the pubic key 

certificate for which the validity due term is expired, 
or such. Furthermore, such a communication path should 
be provided only between the certificate management 
apparatus 10 and another apparatus, and thus, this 

20 should not result in an especially significant burden. 
In fact, in a case where the certificate management 
apparatus 10 and the server apparatus 30 are installed 
physically close to one another, it is easy to provide 
such a communication path with the use of a special 

25 cable laid therebetween, and the present embodiment is 
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advantageous for such a situation in particular. 

In the processing procedure shown in FIG. 13, 
the processing 4 (public key certificate storage 
processing in the server apparatus) is executed after 
5 the processing 2 (root key certificate storage 

processing in the client apparatus), in other words, 
after a response indicating that the root key 
certificate to be distributed is received, is received 
from the client apparatus 40. 

10 In the processing 4, as described above, since 

it is inconvenient that the two public key certificates 
are stored at the same time, the old one should be 
discarded when the new server public certificate is 
stored. However, even such updating is performed, no 

15 problem occurs in authentication when the updating is 

performed positively after the new root key is stored in 
the client apparatus 40. 

Furthermore, it is preferable that the 
processing 3 (public key certificate storage processing 

20 in the client apparatus) be performed after the 

processing 1 (root key certificate storage processing in 
the server apparatus), in other words, after a response 
indicating that the root key certificate to be 
distributed is stored, is received from the server 

25 apparatus 40. 
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As described above in the description of the 
processing 3, if the new root key is not stored in the 
server apparatus 30 at the time when the new client 
public key certificate is stored in the client apparatus 
5 40, overhead occurs in communication until the new root 
key is stored in the server apparatus 30, and thus, the 
efficiency may become degraded. 

Although the processing 5 and the processing 6 
are not indispensable processing, an extra storage 

10 capacity is needed if the old root key certificate or 

public key certificate is stored for a long time. It is 
preferable to apply a storage device having a high 
reliability for storing the key or certificate , and thus , 
the storage device is expensive per unit storage 

15 capacity. Accordingly, this matter (delaying discard of 
the old key or certificate) may cause a problem. 
Furthermore, since the root key certificate to be 
distributed is not in a self signing type (described 
above) , it is necessary to refer to the old root key 

20 certificate each time when it is used, and thus, the 
efficiency is lowered. Then, it is preferable to 
perform the processing 5 and the processing 6 so that 
the root key certificate is made to be that in the self 
signing type, and to discard the old certificate. 

25 Only in order to change the root key 
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certificate into that in the self signing type, it may 
be performed immediately after the root key certificate 
to be distributed is stored. In an example of the 
processing 4, it may be performed immediately after the 
5 completion of the processing 1. However, in this timing, 
the old root key certificate may not be necessarily 
discarded. Further, the timing of discarding cannot be 
controlled by the server apparatus 30. Therefore, it 
becomes necessary to again make a request to discard the 

10 old root key certificate after the processing 3 is 

finished. Accordingly, it is preferable in terms of 
simplification of the processing to perform the 
processing 5 after the completion of the processing 1 
and the processing 3. Similarly, it is preferable to 

15 perform the processing 6 after the completion of the 
processing 2 and the processing 4. 

Once the root key is stored, there occurs no 
necessity to transmit it externally and thus, it can be 
said that any damage or tamper thereof hardly occurs 

20 after that. Therefore, not the root key certificate but 
the key itself may be stored. In such a case, it is 
necessary only to store the new root key included in the 
root key certificate to be distributed. Accordingly, it 
becomes not necessary to separately transmit the new 

25 root key certificate from the certificate management 
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apparatus 10. Therefore, in such a case, in the 
processing 5 and the processing 6, it is not necessary 
to transmit the new root key certificate, but it is 
necessary to request only discard of the old root key. 
5 The same manner may also be applied in a case where no 

digital signature is performed when the root key is used. 

Further, in the present embodiment, 
transmission to the client apparatus 40 from the server 
apparatus 30 is performed, for example, as a response to 

10 a communication request first made from the client 

apparatus 40. However, instead, it is possible that, 
the client apparatus 40 can act as a server, the server 
apparatus 30 can act as a client, and thus, it becomes 
possible that data or a request is directly transmitted 

15 from the server apparatus 30 to the client apparatus 40 
initially. In such a case, a communication request made 
from the client apparatus 40 periodically becomes 
unnecessary. The same manner may also be applied to the 
respective embodiments described subsequently. 

20 A digital certificate management system in a 

second embodiment of the present invention is described 
next with reference to FIGS. 16 through 23. The digital 
certificate management system in the second embodiment 
of the present invention includes a certificate 

25 management apparatus which is a digital certificate 
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management apparatus as well as a client apparatus and a 
server apparatus which configure a client and a server 
system. Also in this embodiment, the client and server 
system includes the single client apparatus and the 
5 single server apparatus. 

Functional configurations of the respective 
apparatuses of the digital certificate management system 
are shown in FIG. 16 corresponding to FIG. 2. In the 
configurations, the same reference numerals are given to 

10 the same function parts as those in FIG. 2. 

As can be seen from the figure, the 
certificate management apparatus 10 can directly 
communicate only with the client apparatus 40 included 
in the client and server system, and a request for the 

15 server apparatus 30 from the certificate management 

apparatus 10 is transmitted via the client apparatus 40. 
In this point, the second embodiment is different from 
the first embodiment . 

Further, also as a point different from the 

20 first embodiment, a server function part 44 is provided 
in the client apparatus 40. The server function part 44 
has a function as a server of performing required 
processing in response to a received request, and 
rerunning a response, and is provided for communication 

25 with the certificate management apparatus 10. If the 
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client apparatus 40 has only the client function part 43, 
the certificate management apparatus 10 should wait for 
a communication request coming from the client apparatus 
40 in order to transmit data or a request to the client 
5 apparatus 40. 

However, since root key updating processing is 
not performed so frequently, for example, once per year, 
almost all the communications are useless if the client 
apparatus 40 performs a communication request 

10 periodically only for this purpose. Therefore, the 
server function part 44 is provided in the client 
apparatus 40, and thereby, a communication request can 
be made also by the certificate management apparatus 10. 
Also the function of this server function part 44 is 

15 achieved as a result of a CPU in the client apparatus 40 
executing a required program, and controlling operations 
of the respective parts in the client apparatus 40 . 

The client apparatus 40 always acts as client 
in a relationship with the server apparatus 30 in the 

20 client and server system. Accordingly, in case the 
client apparatus 40 acts as an intermediary for 
communication between the certificate management 
apparatus 10 and the server apparatus 30, the server 
function part 44 receives data or a request received by 

25 the communication function part 42 from the certificate 
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management apparatus 10 , transfers it to the client 
function part 43, and then, transmits it to the server 
apparatus 30 by requesting communication for the server 
apparatus 30 according to instructions from the client 
5 function part 43. In case where a response coming from 
the server apparatus 30 is returned to the certificate 
management apparatus 10, the revere processing is 
performed . 

Although the sequence of the root key updating 

10 processing is different from that of the first 

embodiment described above according to the differences 
therebetween described above, the second embodiment is 
the same as the first embodiment other than them. 
Accordingly, the duplicated description is omitted. 

15 Also in the second embodiment, data 

transmission between the certificate management 
apparatus 10 and the client apparatus 40 are performed 
through a communication path such as a direct line or so 
for which a safety is secured. Although it is possible 

20 to apply SSL to communication between the certificate 
management apparatus 10 and the client apparatus 40 in 
the present embodiment, this case will be described as a 
variant embodiment later. 

Root key updating operation in the digital 

25 certificate management system is achieved as a result of 
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processing shown in sequence diagrams in FIGS. 17 
through 22 and the processing S described above with 
reference to FIG. 6 being executed in an order shown in 
a flow chart shown in FIG. 23. First, the contents of 
5 the processing in the sequence diagrams in FIGS. 17 

through 22 are described, and after that, the execution 
order thereof is described with reference to FIG. 23. 
The processing shown in the respective figures are 
performed as a result of the respective CPUs in the 

10 certificate management apparatus 10, the server 

apparatus 30 and the client apparatus 40 executing 
required control programs . 

With reference to FIG. 17, processing 11, i.e., 
root key storage processing in the server apparatus is 

15 described next. 

This processing is same as the processing 1 
shown in FIG. 7. However, since the client apparatus 40 
directly communicates with the certificate management 
apparatus 10, the procedure differs somewhat. 

20 That is, in Step S211, the certificate 

management apparatus 10 transmits to the client 
apparatus 40 the root key certificate to be distributed 
created in Step S102 in FIG. 6 as well as an updating 
request transmission request requesting the client 

25 apparatus 40 to transmit an updating request, therefor. 
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In response thereto, the client apparatus 40 transmits 
the root key certificate to be distributed as well as 
the updating request therefor to the server apparatus 30 
in Step S212. Since the client apparatus 40 can request 
5 the server apparatus 30 for communication therebetween, 
it is not necessary to wait for a communication request 
as in the case of FIG. 7. 

Through the above-described processing, the 
root key certificate to be distributed and the updating 
10 request therefor are transmitted to the server apparatus 

30 from the certificate management apparatus 10 via the 
client apparatus 30. In Step S212, the CPU 11 in the 
certificate management apparatus 10 acts as a second 
transmitting unit. 

15 When receiving the updating request 

transmitted in Step S212, the server apparatus 30 
validates the root key certificate to be distributed 
with the use of the old root key certificate in Step 
S213. When it is validated, the root key certificate to 

20 be distributed is stored in the certificate storage part 

31 in Step S214. The processing is completely same as 
that in Steps S112 and S113 in FIG. 7. 

After that, the server apparatus 30 returns a 
result report as a response to the updating request to 
25 the certificate management apparatus 10. However, 
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actually, it is first transmitted to the client 
apparatus 40 once, which then transmits it to the 
certificate management apparatus 10 in Step S216 acting 
as an intermediary. Since this result report can be 
5 transmitted as a response to the updating request 
received from the client apparatus 40, it is not 
necessary to wait for a communication request coming 
from the client apparatus 40. 

Next, with reference to FIG. 18, processing 12, 

10 i.e., root key certificate storage processing in the 
client apparatus is described. 

A purpose of this processing is same as that 
of the processing 2 in FIG. 8. However, the procedure 
is somewhat different, as in the case of the processing 

15 11 described above. 

First, in Step S221, the certificate 
management apparatus 10 transmits the root key 
certificate to be distributed created in Step S102 in 
FIG. 6 as well as an updating request therefor to the 

20 client apparatus 40. In this processing, the CPU 11 in 
the certificate management apparatus 10 acts as a first 
transmitting unit . 

When receiving this request, the client 
apparatus 40 uses the old root key certificate for 

25 validating the root key certificate to be distributed in 
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Step S124. When it is validated, the root key 
certificate to be distributed is stored in the 
certificate storage part 41 in Step S125. The 
processing is same as the processing in Steps S124 and 
5 S125 in FIG. 8. 

After that, the client apparatus 40 returns a 
result report to the certificate management apparatus 10 
as a response to the updating request in Step S224. 

FIG. 19 illustrates processing 13, i.e., 

10 public key certificate storage processing in the client 

apparatus is descried; FIG. 20 illustrates processing 14, 
i.e., public key certificate storage processing in the 
server apparatus; FIG. 21 illustrates processing 15, 
i.e., root key certificate updating processing in the 

15 server apparatus; and FIG. 22 illustrates processing 16, 
i.e., root key certificate updating processing in the 
client apparatus. The processing of these figures has 
the same purposes as those of the processing 3 through 
the processing 6 described above with reference to FIGS. 

20 9 through 12 for the first embodiment. Only 

communication procedures are somewhat different along 
with the difference that the client apparatus 40 instead 
of the server apparatus 30 directly communicates with 
the certificate management apparatus 10, in the same 

25 manner in the cases of the processing 11 and the 
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processing 12 described above. Thus, the duplicated 
descriptions are omitted. 

The execution timing of the respective 
processing shown in FIGS. 17 through 22 and the 
5 processing S shown in FIG. 6 is managed according to an 
updating procedure created based on information stored 
in the configuration storage part 26 by the updating 
control part 27 in the certificate management apparatus 
10. The updating procedure is one illustrated in the 

10 flow chart shown in FIG. 23. That is, when the root key 
is to be updated, first the processing S in FIG. 6 is 
executed, and after that the processing 11 through the 
processing 16 are executed. 

As can be seen from FIG. 23, the root key 

15 updating processing according to the second embodiment 
is one in which the respective processing corresponding 
to that in the first embodiment shown in FIG. 13 is 
executed in the same order. Also, the advantage 
obtained therefrom is the same as that obtained from the 

20 first embodiment. 

That is f in this digital certificate 
management system according to the second embodiment, by 
execution of the root key updating processing in such a 
procedure, a root key can be updated under automatic 

25 control without affecting authentication processing 
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between the server apparatus 30 and the client apparatus 
40, the same as in the first embodiment, even in a case 
where the certificate management apparatus can directly 
communicate only with the client apparatus 40 of the 
5 client and server system. Accordingly, by applying such 
a digital certificate management system, without needing 
a special communication path for updating a root key, a 
root key can be updated. Accordingly, it is possible to 
establish a client and server system which performs 

10 authentication according to SSL upon performing data 
transmission, at low costs. 

Furthermore, in this embodiment, although the 
server function part 44 should be provided in the client 
apparatus 40, there is no part in which a communication 

15 request is waited for, in the procedure of the root key 
updating processing. Accordingly, the processing can be 
proceeded with quickly, and thus, the processing can be 
completed within a short time period in comparison. 

A digital certificate management system 

20 according to a third embodiment of the present invention, 
including a certificate management apparatus, a client 
apparatus and a server apparatus both of which configure 
a client and server system is described next with 
reference to FIGS. 24 through 27. 

25 This digital certificate management system has 
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a configuration same as that of the first embodiment 
described above, and thus, duplicated description 
thereof is omitted, while the digital certificate 
management system according to the third embodiment 
5 performs root key updating processing different from 
that of the first embodiment. 

Root key updating operation in this digital 
certificate management system is achieved as a result of 
processing shown in sequence diagrams shown in FIGS. 2 4 

10 through 27 is executed in this order. The processing 

shown in the respective figures is achieved as a result 
of the respective CPUs in the certificate management 
apparatus 10, the server apparatus 30 and the client 
apparatus 40 executing required control programs. 

15 When detecting a predetermined root key 

updating trigger, the certificate management apparatus 
10 starts the processing illustrated in the sequence 
diagram shown in FIG. 24.- 

The processing T shown in FIG. 24 corresponds 

20 to the processing S described with reference to FIG. 6. 

First, in Steps S301 and S302, the same as in Steps S101 
and S102 in FIG. 6, a new pair of root private key and 
root key are created for a valid root private key, and 
also, a root key certificate to be distributed, which is 

25 a first proof key certificate is created as a result of 
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a digital signature being attached to the new root key 
with the use of the old root private key. 

Then, in Step S303, the same as in Step S151 
in FIG. 11, a new root key certificate, which is a 
5 second proof key certificate, is created as a result of 
a digital signature being attached to the new root key . 
with the use of the new root private key. 

After that, the processing 21 shown in FIG. 25 
is performed. This processing corresponds to processing 

10 including the processing 2 described above with 

reference to FIG. 8 and the processing 3 also described 
above with reference to FIG. 9 in the description of the 
first embodiment, and also, a part of the processing 6 
described above with reference to FIG. 12. 

15 First, in Step S311, the same as in Step S131 

in FIG. 9, the certificate management apparatus 10 
creates a new client public key certificate by attaching 
a digital signature to a client public key with the use 
of the new root private key. 

20 Then, in Step S312, the certificate management 

apparatus 10 transmits to the server apparatus 30 the 
root key certificate to be distributed created in Step 
S302 in FIG. 24, the new root key certificate created in 
Step S303 in FIG. 24 and the new client public key 

25 certificate created in FIG. 311, as well as an updating 
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request transmission request requesting the server 
apparatus 30 to transmit an updating request therefor to 
the client apparatus 40. in response thereto, as in the 
case of Steps S122 and S123 in FIG. 8, the server 
5 apparatus 30 transmits, to the client apparatus 40, as a 
response to a communication request coming from the 
client apparatus 40 (in Step S313) these certificates 
as well as the updating request therefor, in Step S314. 
Through the processing, the respective 

10 certificates mentioned above and the updating request 

therefor are transmitted to the client apparatus 40 from 
the certificate- management apparatus 10 via the server 
apparatus 30. In Step S312, the CPU 11 in the 
certificate management apparatus 10 acts as a first 

15 transmitting unit. 

When receiving this request, as in the case of 
Steps S124 and S125 in FIG. 8, the client apparatus 40 
uses the old root key certificate for validating the 
root key certificate to be distributed, and, when it is 

20 validated, the root key certificate to be distributed is 
stored in the certificate storage part 41, in Steps S315 
and S316. At this time, the old root key certificate is 
not deleted. 

Further, in Step S317, the same as in the case 

25 of FIG. S165 in FIG. 12, the stored root key certificate 



-138- 



to be distributed is used for validating the new root 
key certificate. When it is validated, the new root 
key certificate is stored in the certificate storage 
part 41 in Step S318. At this time, the root key 
5 certificate to be distributed may be deleted. However, 

: in this case, it is assumed that it is still stored. 

i 

In Steps S315 and S316, the CPU in the client 
apparatus 40 acts as a second client updating unit. 

Next, in Steps S319 and S320, the same as in 

i 

10 the case of Steps S135 and S136 in FIG. 9, the new 

client public key certificate is validated, and, when it 
is validated, the new client public key certificate is 
stored in the certificate storage part 41. However, 
since the new root key certificate is already stored, 

15 not the root key certificate to be distributed but the 
new root key certificate may be used for the validation 
of the new client public key certificate. In Steps S319 
and S320, the CPU in the client apparatus 40 acts as a 
! first client updating unit. 

! 

20 At this time the old client public key 

certificate is not deleted yet. Accordingly, the two 
client public key certificates are stored in the 
certificate storage part 41. In this state, when a 
public key certificate is transmitted to a communication 

25 counterpart, the new public key certificate is 
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transmitted first. Since the new root key has not been 
stored in the server apparatus 30 yet, the server 
apparatus 30 cannot decode a digital signature in the 
new public key certificate, and thus a response 
5 indicating authentication failure is issued therefrom. 

However, even in such a case, a communication request is 
made to be issued again, and in this occasion, the old 
public key certificate should be transmitted at this 
time, whereby the old root key can be used to decode a 
10 digital signature attached thereto, and thus, 

authentication can be finally achieved without serious 
problem . 

The processing in Steps S319 and S320 may be 
performed in prior to the processing in Steps S317 and 
15 S318. In this case, the root key certificate is used 
for validation in Step S319. 

After that, the client apparatus 40 returns to 
the certificate management apparatus 10 a response to 
the updating request, in Step S321. However, actually, 
20 first it is transmitted to the server apparatus 30, and 
then, is transmitted to the certificate management 
apparatus from the server apparatus 30 in Step S322 . 

After that, the processing 22 shown in FIG. 26 
is performed. This processing corresponds to processing 
25 including the processing 1 shown in FIG. 7 and the 
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processing 4 shown in FIG. 10 for the first embodiment, 
as well as a part of the processing 5 shown in FIG. 11. 

First, in Step S323, the same as in Step S141 
in FIG. 10, the certificate management apparatus 10 
creates a new server public key certificate by attaching 
a digital signature to a server public key with the use 
of the new root private key. 

Then, in Step S324, the certificate management 
apparatus 10 transmits to the server apparatus 30 the 
root key certificate to be distributed created in Step 
S303 in FIG. 24 and the new server public key 
certificate created in Step S323, as well as an updating 
request therefor. In Step S324, the CPU 11 in the 
certificate management apparatus 10 acts as a second 
transmitting unit . 

When receiving this request, as in Steps S325 
and S326, as in the Steps S112 and S113 in FIG. 7, the 
server apparatus 30 uses the old root key certificate to 
validate the root key certificate to be distributed, and 
when it is validated, the root key certificate to be 
distributed is stored in the certificate storage part 31. 
At this time, the old root key certificate is not 
deleted yet. 

Further, in Step S327, the same as in Step 
S153 of FIG. 11, the stored root key certificate to be 
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distributed is used for validating the new root key 
certificate. When it is validated, the new root key 
certificate is stored in the certificate storage part 31, 
and also, the old root key certificate is discarded in 
5 Step S328. At this time, since the client apparatus 40 
has the new client public key certificate stored therein 
already, the old root key is not needed. Accordingly, 
the processing can be simplified by discarding it at 
this time in comparison to a case where a discarding 
10 request may be issued separately. However, it is also 
possible to issue the discarding request separately. 

In Steps S324 through S328, the CPU in the 
server apparatus 30 acts as a second server updating 
unit . 

15 Next, in Steps S329 and S330, the same as in 

the case of Steps S143 and S144 in FIG. 10, the new 
server public key certificate is validated, and, when it 
is validated, the new server public key certificate is 
stored in the certificate storage part 31, and also, is 

20 used to replace the old server public key certificate. 
However, since the new root key certificate has been 
already stored, not the root key certificate to be 
distributed but the new root key certificate may be used 
to the validation. In Steps S329 and S330, the CPU in 

25 the server apparatus 30 acts as a first server updating 
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unit . 

The reason why the old server public key 
certificate is thus discarded is same as that described 
in the description made with reference to FIG. 9 for the 
5 first embodiment. Since the new root key certificate 
has been already stored in the client apparatus at the 
time of Step S330, authentication processing can be 
performed without problem when the new server public key 
certificate is stored in the server apparatus 30. 
10 The processing in Steps S329 and S330 may be 

performed in prior to the processing in Steps S327 and 
S328. In this case, validation in Step S329 is 
performed with the use of the root key certificate to be 
distributed . 

15 After that, the server apparatus 30 returns a 

result report to the certificate management apparatus 10 
in response to the updating request. 

Through the above-described processing, the 
root key updating is completed in the server apparatus 

20 30 . 

Then, the processing 23 shown in the sequence 
diagram shown in FIG. 27 is performed next. 

First, in Step S332, the certificate 
management apparatus 10 transmits to the server 
25 apparatus 30 an old key discarding request transmission 
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request requesting the server apparatus 30 to transmit 
the old key discarding request to the client apparatus 
40. In response thereto, the server apparatus 30 
transmits the old key discarding request to the client 
5 apparatus 40 as a response to a communication request 
coming from the client apparatus 40 (in Step S333) , in 
Step S334. 

After receiving this request, the client 
apparatus 40 discards, in Step S335, the root key 

10 certificate to be distributed, the old root key 

certificate and the old client public key certificate 
stored in the certificate storage part 41. Since the 
server apparatus 30 has the new root key certificate and 
the new server public key certificate already stored 

15 therein at this time, no problem occurs in 

authentication processing even when these certificates 
are thus discarded. 

After that, the client apparatus 40 returns a 
result report of the certificate management apparatus 10. 

20 However, actually, first, it is transmitted the server 
apparatus 30 once in Step S336, sand then, it is 
transmitted to the certificate management apparatus 10 
from the server apparatus 30 in Step S337. 

Thus, the root key updating processing is 

25 finished. 
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Also in this digital certificate management 
system, by execution of the root key updating processing 
in such a procedure, a root key can be updated under 
automatic control without affecting authentication 
5 • processing between the server apparatus 30 and the 
client apparatus 40 , as in the first embodiment 
described above. Accordingly, it is possible to 
establish a client and server system which performs 
authentication according to SSL upon performing data 

10 transmission, at low costs, since no special 

communication path is needed for the root key updating. 

In this embodiment, since the new client 
public key certificate is stored in the client apparatus 
40 before the new root key is stored in the server 

15 apparatus 30, overhead occurs in communication since the 
server apparatus 30 cannot decode a digital signature in 
the new client public key certificate until the new root 
key is stored in the server apparatus 30. However, on 
the other hand, it becomes possible to achieve the root 

20 key updating processing only through total three times 
of request transmission operations from the certificate 
management apparatus 10 to the server apparatus 30 (or, 
to the client apparatus 40 via the server apparatus 30) . 
Accordingly, in comparison to the first embodiment in 

25 which the total six times of request transmission 
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operations are needed for achieving the root key 
updating, the third embodiment is advantageous in terms 
of management of processing procedure or program 
designing . In case where the number of server 
5 apparatuses and client apparatuses is large for which 
root key certificates should be updated respectively, 
this advantage increases accordingly, and thus the 
present embodiment becomes much superior in this term. 

Furthermore, in the processing 21 or the 

10 processing 22, by configuring so that necessary ones are 
stored together at once after the respective 
certificates are validated, it is possible to 
effectively reduce the number of times of accessing 
operations to a non-volatile memory which is provided to 

15 store the certificates, and also, to reduce the 

processing load as well as to increase the 'processing 
speed accordingly „ 

A fourth embodiment of the present invention 
is described next with reference to FIGS. 24, 28 through 

20 30 . 

A digital certificate management system 
according to the fourth embodiment of the present 
invention includes a certificate management apparatus 
(digital certificate management apparatus) , a client 
25 apparatus and a server apparatus, both of which 
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configure a client and server system. 

This digital certificate management system has 
a configuration same as that in the second embodiment 
described above except the contents of root key updating 
5 processing, and thus, duplicated description of the 
configuration is omitted . 

Root key updating operation in this digital 
certificate management system is same as the operation 
in the fourth embodiment described above, and is 

10 achieved as a result of the processing T as well as 

processing 31 through processing 33 illustrated in the 
sequence diagrams shown in FIGS. 24 and 28 through 30 
being executed in the stated order. The processing is 
performed as a result of the CPUs in the certificate 

15 management apparatus 10, the server apparatus 30 and the 
client apparatus 40 executing required control programs. 

Furthermore, this processing is same in a part 
shown in FIG. 24 as in the. case of the third embodiment 
described above, and also, as to parts shown in FIGS. 28 

20 through 30, the relevant processing has the same purpose 
as that of the processing described above with reference 
to FIGS. 25 through 27 for the third embodiment. Thus, 
along with the configuration in which not the server 
apparatus 30 but the client apparatus 40 directly 

25 communicates with the certificate management apparatus 
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10, the processing procedure is somewhat changed as in 
the case of the processing 11 and the processing 12 
described above with reference to FIGS. 17 and 18 for 
the second embodiment. Therefore, details of the 
5 processing are omitted. 

Also in this digital certificate management 
system according to the fourth embodiment, by execution 
of the root key updating processing in such a procedure, 
a root key can be updated under automatic control 

10 without affecting authentication processing between the 
server apparatus 30 and the client apparatus 40, the 
same as in the third embodiment, even in a case where 
the certificate management apparatus 10 can directly 
communicate only with the client apparatus 40 of the 

15 client and server system. Accordingly, by applying such 
a digital certificate management system, without needing 
a special communication path for updating a root key, 
the root key can be updated. Accordingly, it is 
possible to establish a client and server system which 

20 performs authentication according to SSL upon performing 
data transmission, at low costs. 

A fifth embodiment of the present invention is 
next described with reference to FIGS. 31 through 35. 

Also a digital certificate management system 

25 according to the fifth embodiment includes a certificate 
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management apparatus (digital certificate management 
apparatus) , client apparatuses and a server apparatus 
both of which configure a client and server system. 

In this digital certificate management system, 
5 as shown in FIG. 31, the client and server system 
includes the single server apparatus 30 and the 
plurality of client apparatuses 40-1, 40-2, 40-n. 
As configurations of the certificate management 
apparatus 10, the server apparatus 30 and each of the 

10 client apparatuses 40-1 through 40-n are same as those 
in the above-described first embodiment, respectively, 
details thereof are omitted. Each of the plurality of 
client apparatuses 40-1 through 40-n has a function of 
communicating with the server apparatus 30. The server 

15 apparatus 30 acts as an intermediary for communication 

between the certificate management apparatus 10 and each 
of the client apparatuses 40-1 through 40-n. 

In this digital certificate management system, 
in the configuration storage part 26 in the certificate 

20 management apparatus 10, information of the respective 

nodes included in the client and server system is stored 
in a form shown in FIG. 32. that is, for each node, 
availability of communication with the digital 
certificate management apparatus (CA) 10, an ID of a 

25 node which acts as a communication counterpart of the 



relevant node, information as to whether the relevant 
node acts as a client or a server when communicating 
with the communication counterpart, information as to 
the root key used for the communication with the 
5 communication counterpart, and information indicating 
updating states of the root key certificate and the 
public key certificate for the communication counterpart. 
The 'communication counterpart' means a counterpart with 
which data transmission is performed after 
10 authentication is performed therefor. Although not 

shown, it is possible that, as information for each node, 
an ID of the root key certificate or the public key 
certificate is stored together with validity due term 
thereof . 

15 FIG. 33A shows a specific example of 

information stored in the form shown in FIG. 32 for the 
server apparatus 30. That is, as the node ID, ' server 
apparatus 30' is stored, and also, a fact that it can 
directly communicate with the certificate management 

20 apparatus 10 is stored. As to information of the node 
which acts as a communication counterpart thereof, 
information of the client apparatuses 40-1 through 40-n 
is stored. Further, since the server apparatus 30 acts 
as a server in communication with each node of 

25 communication counterparts, this matter is stored. As 
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to information of the root key used, 'root key A' is 
stored. Furthermore, assuming that the root key A needs 
to be updated, this matter is also stored, as shown. 

As to each of the client apparatuses 40-1 
5 through 40-n, either one of recording manners shown in 
FIGS. 33B and 33C, respectively, may be expected. The 
figures illustrate example assuming that the relevant 
node is the client apparatus 40-1. In this case, as 
shown, 'client apparatus 40-1' is stored as information 

10 of node ID. Since communication with the certificate 
management apparatus 10 is achieved via the server 
apparatus 30, and thus, direct communication is not 
available therewith, this matter is stored in either one, 
as shown. However, the recording manners of information 

15 concerning the node acting as a communication 

counterpart are different from one another as shown. 

That is, in the example shown in FIG. 33B, 
since the matter that the server apparatus 30 and the 
client apparatus 40-1 are communicatable with one 

20 another is already stored in as the information 

concerning the server shown in FIG. 33A, and also 
whether the relevant node acts as a server or a client 
is available from this information, no information is 
stored specifically for the client apparatus 40-1. On 

25 the other hand, in the example of FIG. 33C, as 
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information concerning the client apparatus 40-1, the 
fact that the server apparatus 30 and the client 
apparatus 40-1 are communicatable with one another is 
separately stored there. 
5 In the case of the examples of FIG. 33B, the 

required storage capacity can be effectively reduced 
accordingly, while in the example of FIG. 33C, it is 
possible to know the communication counterpart only with 
reference to the information for the relevant node 

10 itself. However, in either case, since information 

concerning the communication counterpart of the relevant 
node and the matter as to whether the relevant node acts 
as a client or a server is stored anywhere, a proof key 
updating procedure can be determined based thereon. 

15 Root key updating processing in the digital 

certificate management system in the fifth embodiment is 
described next. 

In this processing, basically, the processing 
S and the processing 1 through processing 6 described 

20 above for the first embodiment are executed in the order 
shown in a flow chart of FIG. 35. This processing is 
achieved as a result of the CPUs of the certificate 
management apparatus 10, the client apparatuses 40-1 
through 40-n and the server apparatus 30 executing 

25 required control programs. 
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However, in this embodiment, since the 
plurality of client apparatuses are provided, the 
processing performed on the client apparatuses 40-1 
through 40-n are somewhat different from the case of the 
5 first embodiment.- That is, it is necessary that the 
root key certificate to be distributed, the new client 
certificate or the new client key certificate is stored 
in each of the client apparatuses 40-1 through 40-n, 
individually. 

10 FIG. 34 shows a sequence diagram which 

illustrates processing 3-1 performed in a case where 
public key certificate storage processing shown in FIG. 
9 is performed for the client apparatus 40-1. As can be 
seen therefrom, processing flow itself is same as that 

15 of the processing shown in FIG. 9. Respective steps of 
the processing shown in FIG. 34 correspond to those in 
the processing shown in FIG. 9 with the step numerals 
same in the last two digits. However, the new client 
public key certificate created in Step S531 is one used 

20 by the client apparatus 40-1, and also, in Step S532, 
the updating request transmission request requests the 
server apparatus 30 to transmit the updating request to 
the client apparatus 40-1. 

The same processing is performed also for each 

25 of the other client apparatuses 40-2 through 40-n, where 
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when the other conditions are satisfied, processing for 
a subsequent client apparatus may be performed in prior 
to processing to the first client apparatus when the 
response to the public key certificate storage 
5 processing is returned first. Furthermore, it is also 
possible to perform the public key certificate storage 
processing for the plurality of client apparatuses 
together, and, .in Step S532, the corresponding 
respective new client public key certificates and the 

10 corresponding respective updating requests are 

transmitted to the server apparatus 30 in a form of a 
single message including all of them. Also in this case, 
the process in Steps S533 through S527 is performed for 
each of the client apparatuses. As to the result 

15 reports in Step S538, they may be transmitted one by one 
for the respective client apparatuses, separately, from 
the server apparatus 30, or they may be transmitted to 
the server apparatus' 30 in a form of a single message 
which includes the result reports from a plurality of 

20 the client apparatuses. 

Also for the processing 2 shown in FIG . 2 and 
the processing 6 shown in FIG. 12, the processing is 
different from the case of the first embodiment in the 
same point. Since only the single server apparatus 30 

25 is provided in the fifth embodiment, the processing 1, 
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the processing 4 and the processing 5 in the fifth 
embodiment are the same as that in the first embodiment. 

The number '3-1' of the above-mentioned 
processing 3-1 means that the relevant processing 
5 corresponds to the processing 3 performed for the client 
apparatus 40-1. Also in the subsequent descriptions, 
the number of the processing is determined as adding the 
suffix same as the suffix of the number of the relevant 
apparatus. For example, the processing corresponding to 
10 the processing 3 for the client apparatus 40-n is 
referred to as the processing 3-n, the processing 
corresponding to the processing 6 for the client 
apparatus 40-1 is referred to as the processing 6-1, and 
so forth. 

15 Execution timing for the respective processing 

in this digital certificate management system is such as 
that illustrated in the flow chart shown in FIG. 35 in 
the fifth embodiment. That is, when root key updating 
is performed, the proceeding S shown in FIG. 6 is 

20 performed first, and then, the processing 1 through the 
processing 6 are performed. 

As can be seen from FIG. 35, the root key 
updating processing according to the fifth embodiment 
has execution timing same as that in the case of the 

25 first embodiment. However, since the processing 2, 3 
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and 6 should be performed for each client apparatus, the 
processing becomes somewhat different accordingly. 

Specifically, the processing 1 and the 
processing 2-1 through 2-n are started after the 
5 processing S is completed. The processing 3-1 through 
3-n are started after the completion of the respective 
one of the processing 2-1 through 2-n (For example, the 
processing 3-1 is started after the completion of the 
processing 2-1) . However, it is preferable that this 

10 processing is started also after the completion of the 

processing 1 as shown by a broken arrow. The processing 
4 is started after the completion of all the processing 
2-1 through 3-n as shown. the processing 5 is started 
after the completion of all the processing 3-1 through 

15 3-n as shown. The processing 6-1 through 6-n is started 
after the completion of the respective one of the 
processing 2-1 through 2-n and the processing 4. When 
the processing 3-1 through 3-n, the processing 4, the 
processing 5 and the processing 6-1 through 6-n are 

20 finished, it can be said that updating of the root keys 
and the public key certificates is finished. 

As to the processing 2-1 through 2-n, the 
processing 4-1 through 4-n, and the processing 6-1 
through 6-n, they may be executed in any order among the 

25 client apparatuses as long as the other conditions for 
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starting are satisfied. 

In the processing procedure shown in FIG. 35 , 
as a feature of the fifth embodiment, the processing 4 
(public key certificate storage processing in the server 
5 apparatus) is performed after the completion of all the 
processing 2-1 through 2-n (root key certificate storage 
processing in the client apparatuses), i.e., after 
responses indicating that the root key certificates have 
been stored come from all the client apparatuses 40-1 

10 through 40-n which act as communication counterparts of 
the server apparatus 30. As described above for the 
first embodiment, since the old one should be discarded 
when the new server public key certificate is stored for 
the server apparatus 30, authentication would have 

15 problem if the discarding were performed before all the 
client apparatuses 40-1 through 40-n have the new root 
keys stored therein. Conversely, after all the client 
apparatuses 40-1 through 40-n- have .the new root key 
stored therein, no problem occur in authentication 

20 processing even when the old server public key 
certificate is discarded . 

Furthermore, it is preferable that, the 
processing 3-1 through 3-n (public key certificate 
storage processing in the client apparatuses) are 

25 performed after the processing 1 (root key certificate 
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storage processing in the server apparatus), i.e., after 
a response indicating that the root key certificate to 
be distributed has been stored comes from all the server 
apparatus (in this case, only the single one) which acts 
5 as a communication counterpart of the respective client 
apparatuses 40-1 through 40-n (according to the broken 
arrow) . As described for the first embodiment, if the 
new root key were not stored in the server apparatus 30 
which acts as a communication counterpart when the new 

10 client public key certificates are stored in the client 
apparatuses, overhead occurs in communication until the 
new root key is stored in the server apparatus 30, and 
thus, the efficiency would be degraded. 

As to the other points, although differences 

15 occur somewhat along with the fact that the plurality of 
the client apparatuses are provided, the processing in 
the fifth embodiment is almost same as the processing in 
the first embodiment, and thus, the root keys can be 
updated under automatic control without affecting 

20 authentication processing between the server apparatus 
30 and the respective client apparatuses 40-1 through 
40-n, as in the first embodiment, as a result of the 
root key updating processing is performed in the above- 
described procedure . 

25 Accordingly, by applying such a digital 



-158- 



certificate management system, root keys can be updated 
without providing a special communication path. Thereby, 
it is possible to operate a client and server system 
performing authentication processing with the use of SSL 
5 at low costs, even in a case where a plurality of client 
apparatuses are applied. 

There, it is preferable that the processing 5 
(root key certificate updating processing in the server 
apparatus) is performed after the processing 3-1 through 

10 3-n, in other words, after responses come from the 
client apparatuses 40-1 through 40-n acting as 
communication counterparts of the server apparatus 30 
indicating that the new client public key certificates 
have been stored there. Furthermore, it is preferable 

15 that the processing 6-1 through 6-n (root key 
certificate replacement process in the client 
apparatuses) is performed after the processing 4, i.e., 
after a response comes from all the server apparatus 30 
(in this case, only single server apparatus) which acts 

20 a communication counterpart indicating that the new 

server public key certificate has been stored for the 
respective client apparatuses 40-1 through 40-n. 

The processing procedure shown in FIG. 35 is 
produced by the updating order control part 27 in the 

25 certificate management apparatus 10 based on information 
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stored in the configuration storage part 26 and is 
managed by the same. Specifically, in this embodiment, 
first, with reference to the information concerning the 
server apparatus 30 which can communicate with the 
5 certificate management apparatus 10 directly, it is seen 
therefrom that the server apparatus 30 acts as a server, 
and the server apparatus 30 is communicatable with the 
client apparatuses 40-1 through 40-n. also, it is seen 
that the root key A is commonly used for communication 

10 with all these nodes, and updating thereof is needed. 
Furthermore, with reference to the information 
concerning the respective client apparatuses 40-1 
through 40-n, there are no other nodes in the client and 
server system. Then, from the information, the updating 

15 procedure can be produced appropriately. 

That is, first, the server apparatus 30 and 
the client apparatuses 40-1 through 40-n are made to 
store the root key certificate to be distributed, and 
after all this processing is finished, the server 

20 apparatus 30 is made to store the new server public key 
certificate, and so forth. Thus, an execution 

order of respective processing necessary for updating, 
such as that to satisfy the requirements shown in FIG. 
35, should be determined. Alternately, it is also 

25 possible to determine the updating procedure to perform 
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control such as that to satisfy execution requirements 
determined for each of the respective processing such 
that all the processing 1 and processing 2-1 through 2-n 
should be completed before execution of the processing 4, 
5 or such. 

Variant embodiments of the above-described 
fifth embodiment are next described with reference to 
FIGS. 36 through 38. 

In the fifth embodiment described above, the 

10 root key updating processing is performed according to 
the procedure shown in FIG. 35. This processing 
procedure defines the requirements which are the minimum 
necessary ones . When only these requirements are 
satisfied, the amount of information to be managed for 

15 determining execution order of respective processing, 

progress state management, and so forth, may increase to 
some degree. Alternatively, the root key updating 
processing may be executed according to a procedure 
shown in FIG. 36 or a procedure shown in FIG. 37 instead. 

20 The meaning of each arrow in these figures is same as 
that in the case of FIG. 35. 

In an example shown in FIG. 36, the processing 
1 and the processing 2-1 through 2-n are started after 
the completion of the processing S, and the processing 

25 3-1 through 3-n is started after the completion of the 
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entire processing S, 1 and 2-1 through 2-n as shown. 
The processing 4 is started after the completion of the 
processing 3-1 through 3-n. The processing 5 and the 
processing 6-1 through 6-n are started after the 
5 completion of the processing 4. After the completion of 
all the processing 5 and the processing 6-1 through 6-n, 
it can bb said that updating of the root keys and the 
public key certificates has been finished. 

Thereby, it is not necessary to monitor 

10 execution state of the processing 1 or the processing 2 
for execution of the processing 5 or the processing 6. 
This is because, after the processing 4 is completed, it 
can be proved that the processing 1 and the processing 2 
have been completed, from the execution requirement for 

15 the processing 4. Also, for execution of the processing 
4, only the completion of the processing 3-1 through 
processing 3-n should be proved. Thus, management for 
progress state of the processing can be effectively 
simplified. 

20 Also when determining execution order of the 

respective processing, it is necessary to only determine 
that, after all the nodes are made to store the new root 
key certificates, the new public key certificates are 
stored in the order from the client apparatus to the 

25 server apparatus. Thus, it is possible to simplify the 
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processing, and thus, it is possible to effectively 
reduce the development costs for the apparatuses or the 
control programs . 

In the example shown in FIG. 37, the 
5 processing S, the processing 1, the processing 2-1 
through 2-n, the processing 3-1 through 3-n and the 
processing 4 are executed in the stated order. The 
processing 5 and the processing 6-1 through 6-n are 
started after the completion of the processing 4. Then, 

10 when the processing 5 and the processing 6-1 through 6-n 
are all completed, it can be said that updating of the 
root keys and the public key certificates is finished. 

Thereby, it is possible to further simplify 
the processing also in comparison to the case of FIG. 36. 

15 Even in the procedure shown in each of FIGS. 

36 and 37, since the requirements for the execution 
order including those indicated by the broken lines in 
FIG. 35 are all satisfied, the same advantage as that in 
the fifth embodiment described above is obtained in 

20 terms of securing the authentication processing function 
in the client and server system. 

In case where the procedure shown in FIG. 37 
is applied, it is possible to execute the processing 2-1 
through 2-n and the processing 3-1 through 3-n together 

25 for each of the same client apparatuses. FIG. 38 shows 
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a sequence diagram illustrating a processing example in 
this case. Processing performing for the client 
apparatus 40-1 in which the root key certificate storage 
processing and the public key certificate storage 
5 processing are performed together is referred to as 
processing 2'-l. 

In this processing, the certificate management 
apparatus 10 creates a new client certificate for the 
client apparatus 40-1 as in the Step S531 of FIG. 34, in 

10 Step S621. Then, in Step S622, the certificate 
management apparatus 10 transmits to the server 
apparatus 30 the root key certificate to be distributed 
created in Step S102 of FIG. 6, the new client pubic key 
certificate created in Step 621 and an updating request 

15 transmission request requesting the server apparatus 30 
to transmit an updating request therefor to the client 
apparatus 40-1 . 

In response thereto, the server apparatus 30 
transmit these certificates and the updating request to 

20 the client apparatus 40-1 as in Steps S122 and S123 of 
FIG. 8 , as a response to a communication request (S623) 
coming from the client apparatus 40-1, in Step S624. 

Through the processing, the respective 
certificates mentioned above and the updating request 

25 are transmitted to the client apparatus 40-1 from the 
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certificate management apparatus 10 via the server 
apparatus 30. In Step S622, the CPU 11 in the 
certificate management apparatus 10 acts as a first 
transmitting unit . 
5 Upon receiving this request, the old root key- 

certificate is used to validate the new root key 
certificate to be distributed, and after it is validated, 
the root key certificate to be distributed is stored in 
the certificate storage part 41 in Steps S625 and S626 

10 as in Steps S124 and S125 of FIG. 8. At this time, the 
old root key certificate is not deleted. In the 
processing, the CPU in the client apparatus 40-1 acts as 
a second client updating unit. 

Next, in Steps S627 and S628, as in Steps S135 and 

15 S136 of FIG. 9, the root key certificate to be 

distributed is used to validate the new client public 
key certificate, and after it is validated, the new 
client public key certificate is stored in the 
certificate storage part 41. At this time, the old 

20 client public key certificate is not deleted. In this 

processing, the CPU in the client apparatus 40-1 acts as 
a first client updating unit. After that, the 

client apparatus 40-1 returns a result report for the 
certificate management apparatus 10 as a response to the 

25 updating request in Step S629. However, actually, it is 
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once transmitted to the server apparatus 30, and then, 
it is transmitted to the certificate management 
apparatus 10 from the server apparatus 30 in Step S630. 

By thus performing each of the processing 2-1 
5 through 2-n and the respective one of the process 3-1 
the 3-n together as in the respective one of the 
processing 2'-l through 2'-n, an advantage is obtained 
that, as in the third embodiment described above, 
management of the processing procedure and designing of 

10 the program becomes easier. Since the processing in 
each of the client apparatuses is not one to be 
performed together, as in the server apparatus, this 
advantage is still smaller than a seventh embodiment 
which will be described later. However since each of 

15 the client apparatuses 40-1 through 40-n are made to 
store the new public key certificate after the server 
apparatus is made to store the new root key, it is 
possible to avoid overhead from occurring in 
communication . 

20 A sixth embodiment of the present invention is 

next described with reference to FIGS. 39 through 42. 

A digital certificate management system 
according to the sixth embodiment of the present 
invention includes, as shown in FIG. 39, a certificate 

25 management apparatus (digital certificate management 
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apparatus) and a client apparatus and server apparatuses 
both of which configure a client and server system. 

In this system, the client and server system 
includes the plurality of server apparatuses 30-1 
5 through 30-n as well as the single client apparatus 40. 
Since the respective apparatuses, i.e., the certificate 
management apparatus 1 0 , each of the server apparatuses 
30-1 through 30-n and the client apparatus 40 has the 
same configuration as those in the second embodiment 

10 described above, the details are omitted. In this 

system, the plurality of server apparatuses 30-1 through 
30-n are provided as communication counterparts of the 
client apparatus 40. The client apparatus 40 acts as' an 
intermediary in communication between the certificate 

15 management apparatus 10 and the respective server 
apparatuses 30-1 through 30-n. 

In the case where the client and server system 
is established as described above, the configuration 
storage part 26 in the certificate management apparatus 

20 10 stores information for the respective nodes included 
in the client and server system as shown in FIGS. 40A, 
40B and 40C. 

That is, for the client apparatus 40, as shown 
in FIG. 40A, 'client apparatus 40' is stored as a node 
25 ID, and also, information indicating that this node can 
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directly communicate with the certificate management 
apparatus 10 is stored. Further, as information of 
nodes which act as communication counterparts of this 
node, information of the server apparatuses 30-1 through 
5 30-n is stored, respectively. Also, since the client 
apparatus 40 acts as a client when communicating with 
these communication counterparts, this matter is also 
stored. As information of a root key used, 'root key A ' 
is stored there. Also information indicating that the 

10 root key A needs to be updated is stored. 

For each of the server apparatuses 30-1 
through 30-n, either one of recording manners shown in 
FIGS. 44B and 44C may be applied, as in the fifth 
embodiment described above. The figures show examples 

15 for the server apparatus 30-1, and as a node ID, 'server 
apparatus 30-1' is stored, and also, information 
indicating that it cannot communicate with the 
certificate management apparatus 10 directly is stored 
as shown . 

20 With reference to the information, the 

updating order control part 27 in the certificate 
management apparatus 10 determines an updating procedure 
for the proof keys. 

In a case of the client apparatus 40, the root 

25 keys used for authentication processing may be different 
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from each other for the respective server apparatuses 
acting as communication counterparts. In this case, 
updating processing is performed for each group using a 
common root key. That is, with those described later, 
5 the first through eighth embodiments and the variant 
embodiments thereof are applied for each group, and 
thereby, updating processing may be performed for each 
group individually . 

Root key updating processing in the digital 

10 certificate management system in the sixth embodiment 
shown in FIG. 39 is described next. 

Basically, in this processing, the processing 
S and the processing 11 through 16 described for the 
second embodiment above are executed in an order shown 

15 in a flow chart shown in FIG. 42. This processing is 
achieved as a result of CPUs in the certificate 
management apparatus 10, the server apparatuses 30-1 
through 30-n and the client apparatus 40 executing 
required control programs . 

20 However, in this embodiment, since the 

plurality of server apparatuses 30-1 through 30-n are 
provided, processing performed for the server 
apparatuses becomes somewhat different. In other words, 
it is necessary that the root key certificate to be 

25 distributed, the new client key certificate and the new 
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root key certificate are stored in each of these server 
apparatuses 30-1 through 30-n, individually. 

FIG. 41 shows a sequence diagram illustrating 
processing 14-1 which is public key certificate storage 
5 processing in the server apparatus performed for the 
server apparatus 30-1 as a typical example. As can be 
seen from this figure, a processing flow is the same as 
that shown in FIG. 20. Each of the respective 
processing shown in FIG. 41 corresponds to that shown in 

10 FIG. 20 the same in the last two digits of the step 

number. However, a new client public key certificate 
created in Step S741 is one used by the server apparatus 
30-1, and also, in an updating request transmission 
request transmitted in Step S742, the relevant updating 

15 request is directed to the server apparatus 30-1 as a 
transmission destination . 

Thus, correspondence relationship between the 
processing 14 shown in FIG. 20 and the processing 14-1 
shown in FIG. 41 is the same as that between the 

20 processing 3 and the processing 3-1 described above for 
the fifth embodiment. Also, other different points in 
comparison to the processing 14 are the same as those 
described above for the processing 3-1 in the fifth 
embodiment . 

25 Also for the processing 11 shown in FIG. 17 
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and the processing 15 shown in FIG. 21, the processing 
is different from that in the second embodiment in the 
same points. Since only single client apparatus 40 is 
provided in the sixth embodiment, the processing 12, 13 
5 and 14 performed for the client apparatus 40 is same as 
that in the second embodiment. 

The number '14-1' of the processing 14-1 means 
that the relevant processing corresponds to the 
processing 14 performed for the server apparatus 30-1, 

10 and, also for the subsequent descriptions, the suffix is 
added to the reference numerals in the same way. 

Execution timing of the respective processing 
in this digital certificate management system in the 
sixth embodiment is such as that shown in a flow chart 

15 shown in FIG. 42. That is, when root key updating is to 
be performed, the processing S shown in FIG. 6 is 
executed first, and then, the processing 11 through the 
processing 16 are executed. 

As can be seen from FIG. 42, the root key 

20 updating processing in the sixth embodiment has 

execution timing approximately same as that of the 
second embodiment shown in FIG. 23. . However, since the 
processing 11, 14 and 15 should be performed for each 
server apparatus, somewhat different processing is 

25 performed. 
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Specif ically , the processing 11-1 through 11-n 
is started after the completion of the processing S. 
The processing 13 is started after the completion of the 
processing 12. However, it is preferable that the 
5 processing 13 is started further after the completion of 
the processing 11-1 through 11-n. Each of the 
processing 14-1 through 14-n is started after the 
completion of the processing 12 and the respective one 
of the processing 11-1 through 11-n (for example, the 

10 processing 14-1 is started after the completion of the 
processing 11-1) . Each of the processing 15-1 through 
15-n is started after the completion of the respective 
one of the processing 11-1 through 11-n and the 
processing 13. The processing 16 is started after the 

15 completion of the processing 12 and the processing 14-1 
through 14-n. When the processing 13, the processing 
14-1 through 14-n, the processing 15-1 through 15-n and 
the processing 16 are entirely completed, it can be said 
that updating of the root keys and the public key 

20 certificates is finished. 

Although some differences occurs since not the 
server apparatus 30 but the client apparatus 40 directly 
communicates with the certificate management apparatus 
10, and also, the plurality of the server apparatuses 

25 30-1 through 30-n are provided, the processing 
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corresponding to that in the fifth embodiment shown in 
FIG. 35 is executed in the same order, basically, in the 
processing according to the sixth embodiment. Also the 
same advantages as those in the fifth embodiment are 
5 obtained from the sixth embodiment. 

That is, in the digital certificate management 
system according to the sixth embodiment, by execution 
of the root key updating processing in the above- 
described procedure, root keys can be updated under 

10 automatic control without affecting authentication 

processing between the server apparatuses 30-1 through 
30-n and the client apparatus 40, the same as in the 
fifth embodiment, even in a case where the certificate 
management apparatus can directly communicate only with 

15 the client apparatus 40 of the client and server system 
and also the number of server apparatuses included in 
the client and server system is plural. Accordingly, by 
applying such a digital certificate management system, 
without needing a special communication path for 

20 updating root keys, the root keys can be updated. 

Accordingly, it is possible to establish a client and 
server system which performs authentication according to 
SSL upon performing data transmission, at low costs. 

Furthermore, in this embodiment, since there 

25 is no part in which a communication request is waited 
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for, in the procedure of the root key updating 
processing, the processing can be proceeded with quickly, 
and thus, the processing can be completed within a short 
time period, as in the second embodiment described above. 
5 Furthermore, the same variant embodiments as 

those of the fifth embodiment described above may be 
applied also to the sixth embodiment. 

A seventh embodiment of the present invention 
is next described with reference to FIG. 43. 

10 A digital certificate management system 

according to the seventh embodiment includes a 
certificate management apparatus (digital certificate 
management apparatus) , a server apparatus and client 
apparatuses both of which configure a client and server 

15 system. 

This digital certificate management system has 
the same configuration as that in the fifth embodiment 
described above while only the contents of root key 
updating processing are different from that of the fifth 

20 embodiment, thus duplicated descriptions being omitted. 

Root key updating operation in this digital 
certificate management system is achieved basically as a 
result of the processing T shown in FIG. 2 4 and the 
processing 21 through the processing 23 shown in FIGS. 

25 25 through 37 described above for the third embodiment 
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being executed in the stated order. This processing is 
achieved as a result of respective CPUs in the 
certificate management apparatus 10, the server 
apparatus 30 and the client apparatuses 40-1 through 40- 
5 n executing respective control programs . 

Since this system includes the plurality of 
client apparatuses 40-1 through 40-n, the processing 
performed therefor becomes somewhat different. That is, 
the same as in the fifth embodiment, it is necessary to 

10 transmit the root key certificate to be distributed, the 
new client certificate and the new root key certificate 
and cause them to be stored for each of these client 
apparatuses 40-1 through 40-n, individually. 

Specifically, the processing 21 shown in FIG. 

15 21 and the processing 23 shown in FIG. 27 are performed 
for each client apparatus. Since the contents of change 
in the processing and the steps numbers provided 
according thereto are the same as those in the. 
correspondence relationship between the processing 3 and 

20 the processing 3-1 in the case of the fifth embodiment, 
details are omitted. For example, the new client public 
key certificate is one used by the client apparatus 40-1, 
and also, in an updating request transmission request in 
the processing corresponding to Step S312, the client 

25 apparatus 40-1 is directed to as a transmission 
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destination of the updating request, in a typical 
example . 

In the root key updating processing, the 
respective processing is executed in the timing shown in 
5 a flow chart shown in FIG. 43. 

That is, first the processing T is started, 
then after the completion thereof, the processing 21-1 
through the processing 21-n are started in any order. 
After all this processing is completed, the processing 

10 22 is started, and after- the completion thereof, the 

processing 23-1 through 23-n are started in any order. 
When the processing is entirely finished, it can be said 
that updating of the root keys and the public key 
certificates is finished. 

15 Such an updating procedure is produced by the 

updating order control part 27 in the certificate 
management apparatus 10 based on information stored in 
the configuration storage part 26, and is managed by the 
same. In this embodiment, since, with reference to the 

20 information concerning each node, it is seen that nodes 
functioning as clients in the client and server system 
are the client apparatuses 40-1 through 40-n, the 
updating procedure should be determined so that, 
updating processing is performed therefor first, and, 

25 after the completion thereof, updating processing for 
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the server apparatus 30 acting a server is performed. 
Then, after the completion for the server apparatus 30, 
old key discarding processing for the client apparatuses 
should be performed. 
5 By performing updating processing according to 

such a procedure, as in the third embodiment, although 
overhead occurs in part of communication, management in 
processing procedure and program designing become easier 
in comparison to the case of the fifth embodiment. This 

10 advantage increases as the number of nodes for which 

root key certificates should be updated increases, and 
thus, this embodiment becomes more advantageous 
accordingly . 

An eighth embodiment of the present invention 

15 is described next with reference to FIG. 44. 

A digital certificate management system 
according to the eighth embodiment includes a 
certificate management apparatus (digital certificate 
management apparatus) , server apparatuses and a client 

20 apparatus both of which configure a client and server 
system . 

This digital certificate management system has 
the same configuration as that in the sixth embodiment 
described above while only the contents of root key 
25 updating processing are different from that of the sixth 
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embodiment , thus duplicated descriptions being omitted. 

Root key updating operation in this digital 
certificate management system is achieved basically as a 
result of the processing T and the processing 31 through 
5 the processing 33 described above for the fourth 

embodiment being executed in the stated order. This 
processing is achieved as a result of respective CPUs in 
the certificate management apparatus 10, the server 
apparatuses 30-1 through 30-n and the client apparatus 

10 40 executing respective control programs. 

Since this system includes the plurality of 
server apparatuses 30-1 through 30-n, the processing 
performed therefor becomes somewhat different. That is, 
the same as in the sixth embodiment, it is necessary to 

15 transmit the root key certificate to be distributed, the 
new client certificate and the new root key certificate 
and cause them to be stored for each of these server 
apparatuses 30-1 through 30-n, individually. 

Specifically, the processing 32 shown in FIG. 

20 29 is performed for each client apparatus. Since the 
contents of change in the processing and the steps 
numbers provided according thereto are the same as those 
in the correspondence relationship between the 
processing 14 and the processing 14-1 in the case of the 

25 sixth embodiment, details are omitted. For example, the 
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new client public key certificate is one used by the 
server apparatus 30-1, and also, in an updating request 
transmission request in the processing corresponding to 
Step S421, the server apparatus 30-1 is directed to as a 
5 transmission destination of the updating request, as a 
typical example. 

In the root key updating processing, the 
respective processing is executed in the timing shown in 
a flow chart shown in FIG. 44. 

10 That is, first the processing T is started, 

then after the completion thereof, the processing 31 is 
started. After this processing is completed, the 
processing 22-1 through the processing 22-n are started 
in any order, and after the completion thereof entirely, 

15 the processing 23 is started. When this processing is 
finished, it can be said that updating of the root keys 
and the public key certificates is finished. 

Such an updating procedure is produced by the. 
updating order control part 27 in the certificate 

20 management apparatus 10 based on information stored in 

the configuration storage part 26, and is managed by the 
same. In this embodiment, since, with reference to the 
information concerning each node, it is seen that a node 
functioning as a client in the client and server system 

25 is the client apparatuses 40, the updating procedure 
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should be determined so that, updating processing is 
performed therefor first, and, after the completion 
thereof, updating processing for the server apparatuses 
30-1 through 30-n acting servers is performed. Then, 
5 after the completion for the server apparatuses, old key 
discarding processing for the client apparatuses should 
be performed. 

By performing updating processing according to 
such a procedure, as in the fourth embodiment, although 

10 overhead occurs in part of communication, management in 
processing procedure and program designing become easier 
in comparison to the case of the sixth embodiment. This 
advantage increases as the number of nodes for which 
root key certificates should be updated increases, and 

15 thus, this embodiment becomes more advantageous 
accordingly . 

Variant embodiments of the fifth through 
eighth embodiments of the present invention described 
above are described next with reference to FIGS. 45 

20 through 48. 

In each of the above-described fifth through 
eighth embodiments, the client and server system is 
configured by the single node and the plurality of nodes 
acting as communication counterparts thereof both of 

25 which communicate with one another directly. However, 
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the present invention may also be applied to another 
case where a plurality of servers and a plurality of 
clients are included in a client and server system, and, 
a plurality of these nodes are made communicatable 
directly with a certificate management apparatus, as 
shown in FIG. 45 or 46. 

A root key updating procedure for such a case 
is described next. In the client and server system 
shown in each of FIGS. 45 and 46, it is assumed that the 
same root key is used for authentication between each 
pair of these nodes in all cases. 

First, in the case of FIG. 45, a plurality of 
server apparatuses 30-1 and 30-2 are communicatable with 
a certificate management apparatus 10 directly, and each 
of all the client apparatuses 40-1 through 40-5 
communicates with a single server apparatus thereof. In 
such a case, updating processing may be performed 
regarding that separate client and server systems exist 
for the respective server apparatuses. 

That is, in the example shown in FIG. 45, root 
key updating processing may be performed individually 
for each of a client server system including the server 
apparatus 30-1 and the client apparatuses 40-1 through 
40-3 and another client and server system including the 
server apparatus 30-2 -and the client apparatuses 40-4 



-181- 



and 40-5. Even though such a manner is applied, since 
no authentication processing is performed involving 
different client and server systems in a mixed manner, 
root key updating processing can be achieved without 
5 significant problem occurring in authentication 

processing between each pair of nodes, as a result of 
updating processing being performed according to the 
updating procedure described above for the fifth or 
seventh embodiment for each of these client and server 

10 systems regarded. 

FIG. 46 shows a case where a client apparatus 
(in this case, a client apparatus 30-1) exists which 
communicates with a plurality of server apparatuses 
regarding as communication counterparts. In such a case, 

15 it is necessary to perform root key updating processing 
regarding that a single client and server system 
includes all the nodes. However, even in such a case, 
the same as in the fifth and seventh embodiments 
described above, processing of causing each server 

20 apparatus to store a new server certificate should be 

performed after all the client apparatuses which act as 
communication counterparts thereof is caused to store a 
new root key . 

FIG. 47 shows requirements for starting each 

25 processing needed for updating processing in this 
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example. In this figure, the meanings of each arrow and 
each number of processing are same as those in the case 
of FIG. 35 described above for the fifth embodiment. 
Since the configuration in the client and server system 
5 becomes somewhat complicated, the contents of the 

starting requirements become complicated accordingly in 
comparison to FIG. 35, as shown. However, the starting 
requirements for each processing is based on the same 
rules as those in the case of FIG. 35, i.e., for example, 

10 processing 4-1 which is public key certificate storage 
processing for the server 30-1 is started after the 
completion of all the processing 1-1 and processing 2-1 
through 2-3 which are root key certificate storage 
processing for the server 30-1 itself and the client 

15 apparatuses 40-1 through 40-3 acting as communication 

counterparts thereof. Also from the same rules as those 
in the case of FIG. 35, it can be seen that processing 
3-3 which is public key certificate storage processing 
for the client apparatus 40-3 should be started 

20 preferably after the completion of all the processing 2- 
3 and processing 1-1 and 1-2 which are root key 
certificate storage processing for the client apparatus 
40-3 itself and the server apparatuses 30-1 and 30-2 
acting as communication counterparts thereof. 

25 However, for a relationship between nodes 
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which do not act as communication counterparts of one 
another, such as that between the server apparatus 30-1 
and the client apparatus 40-4, or such, since there is 
no expectation that authentication processing is 
5 succeeded in therebetween, and there is no necessity to 
provide proper relationship in storage states of 
certificates therebetween, it is not necessary to mange 
a processing order therefor . 

In case where root key certificates and public 

10 key certificates are stored together in each of the 

respective nodes as in the seventh embodiment, starting 
requirements for respective processing are those shown 
in FIG. 48. FIG. 48 corresponds to FIG. 43, and the 
same as in FIG. 43, the updating procedure may be 

15 determined according to requirements that updating 
processing for a server apparatus should be started 
after the completion of updating processing for all the 
client apparatuses which act as communication 
counterparts thereof . 

20 The same as in the case of the fifth or the 

seventh embodiment described above, the updating 
procedure shown in FIG. 47 or 48 is produced by the 
updating order control part 27 in the certificate 
management apparatus 10 with reference to information 

25 stored in the configuration storage part 26, and is 
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managed by the same. Even though the configuration of 
the client and server system is such as that shown in 
FIG. 46 , the function of each node included therein can 
be known from the information concerning the relevant 
5 node stored in the configuration storage part 26 , and 
based thereon, the updating procedure can be produced 
properly . 

It. is also possible that, in case where the 
updating procedure is produced, a request for a node 

10 such as the client apparatus 40-3 communicatable with 

the plurality of server apparatuses 30-1 and 30-2 may be 
transmitted thereto via either one of the server 
apparatuses 30-1 and 30-2. 

The variant embodiments described above are 

15 examples in which a node(s) which is (are) directly 

communicatable with the certificate management apparatus 
10 is the server apparatus (es) . However, the same 
variations may also be applied for a case where a 
node(s) which is (are) directly communicatable with the 

20 certificate management apparatus 10 is a client 

apparatus (es) in the same way. In this case, the 
variation described above is applied to the sixth or 
eighth embodiment. 

Other variant embodiments of the respective 

25 embodiments described above are described next. 
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In the above-described embodiments, the client 
apparatus (es) 40 and the server apparatus (es ) 30 perform 
authentication processing by SSL. However, the present 
invention works on, also with the use of authentication 
5 processing other than such. 

TLS (Transport Layer Security) derived from 
SSL is known, and the present invention may also be 
applied to a case where authentication based on this 
protocol is employed. 

10 Furthermore, although the certificate 

management apparatus 10 is provided separately from the 
server apparatus 30 or from the client apparatus 40, it 
is also possible to provide the certificate management 
apparatus within either of the server apparatus 30 and 

15 the client apparatus 40. In this case, components such 
as CPU, ROM, RAM, and so forth may be provided specially 
for achieving the functions of the certificate 
management apparatus 10. However, it is also possible 
that the CPU, the ROM, the RAM and so forth of the 

20 server apparatus 30 or the client apparatus 40 are 
utilized for both the functions of the certificate 
management apparatus and the server apparatus or the 
client apparatus, and the, the CPU is made to execute 
software such as to cause the apparatus to function as 

25 the certificate management apparatus 10 as well as the 
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original apparatus such as the server apparatus or the 
client apparatus. 

In such a case, communication between the 
certificate management apparatus 10 and the server 
5 apparatus 30 or the client apparatus 40 which integrally 
includes the certificate management apparatus 10 
includes inter-process communication between a process 
which causes the hardware to function as the certificate 
management apparatus 10 and another process which causes 

10 the hardware to function as the server apparatus 30 or 
the client apparatus 40. 

Furthermore, in the respective embodiments 
described above, the certificate management apparatus 10 
creates a proof key or a digital certificate by itself. 

15 However, it is also possible to provide an apparatus 
separate from the certificate management apparatus' 10 
which performs the function of the proof key creation 
part 21 or the function of the certificate issuance part 
22, and the certificate management apparatus 10 obtains 

20 a proof key or a digital certificate provided by this 
separate apparatus . 

Further, the certificate management apparatus 
10 may be configured to be communicatable directly with 
both the client apparatus ( es ) 30 and the server 

25 apparatus (es) 40. In this case, the communication 
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sequences shown in FIGS. 7 through 12 and so forth 
become somewhat different since the certificate 
management apparatus 10 thus become directly 
communicatable with both. However, the same processing 
5 order as that in each of the above-described respective 
embodiments may be applied. Also by providing such a 
configuration, the same advantages as those in the 
above-described respective embodiments can be obtained. 
Furthermore, it is possible to provide a 
10 configuration such that, in each of the second and 

fourth embodiments, authentication processing by SSL is 
performed when data transmission is performed between 
the certificate management apparatus 10 and the client 
apparatus 40. 

15 For this purpose, as shown in FIG. 49, in the 

client apparatus 40, in addition to the client private 
key, the client public key certificate and the root key 
certificate (described above for the relevant 
embodiment) used for authentication processing with the 

20 server apparatus 30, another set of a private key, a 
public key certificate and a root key certificate 
(referred to as A a second client private key', *a second 
client public key certificate' and x a second root key 
certificate') are stored, and they are used for 

25 authentication processing with the certificate 
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management apparatus 10. 

In this case, also in the certificate 
management apparatus 10, a management apparatus private 
key, a management apparatus public key certificate and 
5 the above-mentioned second root key certificate are 
stored, and are used for authentication. Then, the 
second client public key certificate and the management 
apparatus public key certificate are those, the contents 
of which can be checked with the use of a second root 

10 key included in the second root key certificate. In 

other words, a. digital signature is made with the use of 
a root private key (second root private key) 
corresponding to the second root key. 

Thereby, it becomes possible to completely 

15 individually perform authentication processing between 
the certificate management apparatus 10 and the client 
apparatus 40 and authentication processing between the 
client apparatus 40 and the server apparatus 30. 

The client apparatus 40 in the second or 

20 fourth embodiment performs data transmission with the 

certificate management apparatus 10 with the use of the 
server function part 44, while performing data 
transmission with the server apparatus 30 with the use 
of the client function part 43 via the communication 

25 function part 42. Accordingly, it is possible to 
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clearly distinguish communication requested by the 
certificate management apparatus 10 and communication 
requested by the server apparatus 30. Thereby, it is 
possible to perform authentication processing with the 
5 use of the separate keys or the separate certificates 
therewith . 

In such a case, even after the root key 
certificate or the public key certificate used for 
authentication between the client apparatus 40 and the 
10 server apparatus 30 is updated according to a request 
from the certificate management apparatus 10, this 
matter never affects authentication processing between 
the certificate management apparatus 10 and the client 
apparatus 40 . 

15 By performing updating processing in a 

procedure described above for each embodiment, as 
described above, the updating processing can be 
performed without significantly affecting the 
authentication processing between the client apparatus 

20 40 and the server apparatus 30. Accordingly, by 

providing a configuration such as that shown in FIG. 49, 
the root key can be updated while securing the 
authentication processing between each pair of the 
nodes . 

25 In order to update the second root key 
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certificate, the certificate management apparatus 10 is 
made to act as a client while the client apparatus 40 is 
made to act as a server, and then, updating processing 
is performed according to the procedure in any of the 
5 above-described embodiments. Even performing the 

updating processing in this manner, it never affects the 
authentication processing between the client apparatus 
40 and the server apparatus 30. 

Also in case where the number of the server 
10 apparatuses 30 is plural as in the sixth or eighth 
embodiment described above, the same manner can be 
applied . 

Further, in each of the embodiments described 
above, the root key certificate and the public key 

15 certificate which are stored in both the client 

apparatus 40 and the server apparatus 30 necessary for 
mutual authentication between the client apparatus 40 
and the server apparatus 30 are updated. However, as 
described above with reference to FIG. 7, when the 

20 necessary authentication is only authentication of the 

server apparatus 30 performed by the client apparatus 40 , 
it is sufficient that the root key certificate is stored 
in the server apparatus 30 while the public key 
certificate is stored in the client apparatus 40. 

25 Accordingly, in this case, what should be updated is 
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thus limited. 

Thus, it is possible to simplify the root key 
updating processing according to the first embodiment 
described above as follows: That is, as shown in FIG. 
5 52, the root key certificate creation processing 

(processing S) shown in FIG. 6, the root key certificate 
storage processing in the client apparatus (processing 
2) shown in FIG. 8, the public key certificate storage 
processing (processing 24) shown in FIG. 50 and the root 

10 key certificate updating processing (processing 26) in 
the client apparatus shown in FIG. 51 are performed in 
. the stated order. 

In this processing, the processing 24 
corresponds to the processing 4 shown in FIG. 10. 

15 However, in case where the root key certificate is not 

stored in the server apparatus 30, the new server public 
key certificate received from the certificate management 
apparatus 10 is trusted in Step S144, and is used to 
replace the old server public key certificate as it is. 

20 Further, in Step S142', a configuration may be provided 
such that, the root key certificate to be distributed is 
also transmitted, and with the use thereof, the new 
server public key certificate may be validated (in Step 
S143) . In this case, by storing in the server apparatus 

25 30 the root key certificate same as that of the client 
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apparatus 40, the root key certificate to be distributed 
can be validated with the use thereof. 

The processing 26 corresponds to the 
processing 6 shown in FIG. 6. Since the public key 
5 certificate is not updated in the client apparatus 40 , 
processing of discarding the public key certificate is 
omitted from the Step S166'. Only in this point, the 
processing 26 is different from the processing 6. 

Also through the above-mentioned processing, 

10 the same as in any of the other embodiments, the 

operation of transmitting the new server public key 
certificate to the server apparatus 30 is performed 
after receiving information from the client apparatus 40 
indicating that it has received the new root key 

15 certificate. Then, by applying this way, the same as in 
the first embodiment, the root key can be updated under 
automatic control without significantly affecting the 
authentication processing between the server apparatus 
30 and the client apparatus 40. 

20 Also for any of the other respective 

embodiments, the same variation can be applied. 

Further, in the above-described respective 
embodiments, the common root key certificate is used by 
the client apparatus 40 and the server apparatus. 

25 However, it is not necessary to limited thereto. That 
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is, as shown in FIG. 54, different root keys may be 
stored in the client apparatus 40 and the server 
apparatus 30. Also applying such a configuration, no 
problem occur in authentication when the server 
5 apparatus 30 can validate the client public key 

certificate, and also, the client apparatus 40 can 
validate the server public key certificate. . 

In such a case, the respective root key 
certificates may be independently updated. In such a 

10 case, the public key certificates which should be 
validated with the use of the root key certificate 
should also be updated together. Also in this 
processing, by applying a manner such that, according to 
the same concepts as that in the above-described 

15 respective embodiments, when the public key certificate 
(server public key certificate) stored in the server 
apparatus 30 is updated after updating of the root key 
certificate (server root key certificate) stored in the 
client apparatus 40 is finished, it is possible to 

20 update the root key while maintaining the state in which 
the authentication processing between the client 
apparatus 40 and the server apparatus 30 is available. 
The same as in the above-mentioned first embodiment, it 
is preferable that, after updating the root key 

25 certificate (client root key certificate) stored in the 
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server apparatus 30 is finished, the public key 
certificate (client public key certificate) stored in 
the client apparatus 40 is updated. 

In a specific example of this processing, for 
5 example, respective processing shown in FIGS. 55 through 
58 is executed in an order shown in FIG. 59. The 
respective processing shown in FIGS. 55 through 58 
corresponds to the processing S shown in FIG. 6, the 
processing 2 shown in FIG. 8, the processing 4 shown in 

10 FIG. 10, and the processing 6 shown in FIG. 12, 
respectively . 

A root key certificate for validation created 
in Step S503 shown in FIG. 55 is used by the server 
apparatus 30 for validating the new server public key 

15 certificate. There, the server public key certificate 
is to be validated with the use of the client root key 
certificate, and since the server apparatus 30 cannot 
validate the server public key certificate with the use 
of the server root key certificate stored by itself, the 

20 root key certificate for validation is needed. 

The same variation is also applicable to the 
above-described respective embodiments in the same 
manner . 

Furthermore, it is also possible to mutually 
25 combining the arts described above for the respective 
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ones of the embodiments and the variant embodiments 
described above. 

Furthermore, it is possible to obtain the 
advantages same those described above by causing a 
5 computer which is communicatable directly or indirectly 
via a communication network with a plurality of 
apparatuses included in a client and server system, to 
execute a program prepared for achieving the respective 
functions (i.e., functions of the above-mentioned 
10 configuration storage part, the updating order control 
part, the proof key updating part, the first 
transmitting unit, the second transmitting unit and so 
forth) . 

Such a program may be previously stored in a 
15 ROM, a HDD or so belonging to the computer, or, may be 
provided to the computer with a form recorded in a non- 
volatile recording medium (memory) such as a CD-ROM, a 
flexible disk, an SRAM, an EEPROM, a memory card or such. 
-The above-mentioned respective processing may be 
20 executed by the computer as a result of a CPU of the 
computer being installed in the computer and the CPU 
executing the respective processing, or the CPU reading 
out the program from the memory, and executing the same. 
It is also possible that the program is 
25 downloaded from an external apparatus (server) including 
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a recording medium in which the program is recorded 
connected with the communication network, or from an 
external apparatus having a storage device storing the 
program. 

5 Thus, by the digital certificate management 

system, the digital certificate management apparatus, 
the digital certificate management method, the updating 
order determining method and the program according to 
the present invention, it is possible to safely update 

10 an authentication public key used for validation of a 
digital certificate in authentication processing in a 
client and server system without providing a special 
communication path for the updating processing. 

Accordingly, by applying the present invention 

15 to processing for management of certificates used for 
authentication processing in the client and server 
system, it is possible to provide a system by which the 
authentication public keys can be safely updated, at low 
costs . 

20 Further, the present invention is not limited 

to the above-described embodiments, and variations and 
modifications may be made without departing from the 
basic concept of the present invention. 

The present application is based on Japanese 

25 Laid-open Patent Applications Nos . 2003-075278, 2004- 
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056764, 2003-096129 and 2004-056766, filed on March 19, 
2003, March 1, 2004, March 31, 2003 and March 1, 2004, 
respectively, the entire contents of which are hereby 
incorporated by reference. 



